SecurityHome.eu MS07-040 - Critical: Vulnerabilities in .NET Framework Could Allow Remote Code Execution (931212)

Home / bulletins

MS07-040 - Critical: Vulnerabilities in .NET Framework Could Allow Remote Code Execution (931212) - Version:1.1
Posted on 13 July 2007
There is an newer version: MS07-040 - Version: ion:4
Critical
Severity Rating: Critical - Revision Note: Bulletin Updated: Corrected Windows Vista severity rating in the â€œAffected Softwareâ€ table to Important. Corrected several instances in the file manifest tables incorrectly referencing a version of Mscordacwks.dll that is not installed on the system. Added an additional FAQ explaining why customers installing .NET Framework 3.0 should update .NET Framework 2.0 on their system. Added an additional FAQ for ASP.NET Web application developers.Summary: This update resolves three privately reported vulnerabilities. Two of these vulnerabilities could allow remote code execution on client systems with .NET Framework installed, and one could allow information disclosure on Web servers running ASP.NET.
Link
Other versions
MS07-040 - Version: 1.0
MS07-040 - Version: 1.1
MS07-040 - Version: 1.2
MS07-040 - Version: 1.3
MS07-040 - Version: 2.0
MS07-040 - Version: 3.0
MS07-040 - Version: 3.1
MS07-040 - Version: 3.2
MS07-040 - Version: 4.0
MS07-040 - Version: ion:4

TOP

Bulletins :

Last 20

Exploits :

Last 20