CVE-2012-1896 in .NET Frameworkinformazioni

Riassunto

di MITRE

Microsoft .NET Framework 2.0 SP2 and 3.5.1 does not properly consider trust levels during construction of output data, which allows remote attackers to obtain sensitive information via (1) a crafted XAML browser application (aka XBAP) or (2) a crafted .NET Framework application, aka "Code Access Security Info Disclosure Vulnerability."

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

22/03/2012

Divulgazione

13/11/2012

Moderazione

accettato

Voce

VDB-6927

CPE

pronto

CWE

CWE-200 (confermato)

CVSS

5.0 (NVD)

EPSS

0.23666

KEV

Attività

molto basso

Settore

Pharma, Education, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-1896
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-1896
CVE Details	https://www.cvedetails.com/cve/CVE-2012-1896/

◂ Precedente Visione D'ensemble Il prossimo ▸

Do you know our Splunk app?

Download it now for free!