NVD

Id
47432  
Name
CVE-2009-0090  
Description
Microsoft .NET Framework 1.0 SP3, 1.1 SP1, and 2.0 SP1 does not properly validate .NET verifiable code, which allows remote attackers to obtain unintended access to stack memory, and execute arbitrary code, via (1) a crafted XAML browser application (XBAP), (2) a crafted ASP.NET application, or (3) a crafted .NET Framework application, aka "Microsoft .NET Framework Pointer Verification Vulnerability."  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2009-10-14  
Modified Date
2010-08-21  
Seq
2009-0090  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
237361 47432 CVE-2009-0090 oval:org.mitre.oval:def:5716  View
237362 47432 CVE-2009-0090 MS09-061  View
237363 47432 CVE-2009-0090 TA09-286A  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
41224 JVNDB-2009-002231 Microsoft .NET Framework におけるコード検証処理に関する任意のコードを実行される脆弱性 Microsoft .NET Framework には、.NET 検証可能コードを適切に検証しないため、スタックメモリにアクセスされ、任意のコードを実行される脆弱性が存在します。 CVE-2009-0090 37521 CVE-2009-0090 47432 9.3 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002231.html 2009-10-13 2009-11-17 View