Total vulnerabilities in the database
Microsoft .NET Framework 2.0, 2.0 SP1, and 3.5 does not properly enforce a certain type-equality constraint in .NET verifiable code, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (XBAP), (2) a crafted ASP.NET application, or (3) a crafted .NET Framework application, aka "Microsoft .NET Framework Type Verification Vulnerability."
| Software | From | Fixed in |
|---|---|---|
| microsoft / windows_2000 | - | - |
| microsoft / .net_framework | 1.1-sp1 | 1.1-sp1.x |
| microsoft / .net_framework | 2.0-sp2 | 2.0-sp2.x |
| microsoft / .net_framework | 2.0-sp1 | 2.0-sp1.x |
| microsoft / windows_server_2003 | - | - |
| microsoft / windows_server_2008 | - | - |
| microsoft / windows_server_2008 | --sp2 | --sp2.x |
| microsoft / .net_framework | 3.5-sp1 | 3.5-sp1.x |
| microsoft / .net_framework | 3.5 | 3.5.x |
| microsoft / windows_vista | - | - |
| microsoft / .net_framework | 2.0 | 2.0.x |
| microsoft / .net_framework | 1.0-sp3 | 1.0-sp3.x |
| microsoft / windows_xp | - | - |
| microsoft / windows_xp | --sp2 | --sp2.x |