| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| MS13-052 | Vulnerabilities in .NET Framework and Silverlight Could Allow Remote Code Execution (2861561) | Microsoft .NET | Critical | 10-07-2013 |
Technical Information
Brief overview of the risk:
This security update resolves seven vulnerabilities in Microsoft .NET Framework and Microsoft Silverlight.
Detailed Information on the risk:
A remote code execution vulnerability exists in the way that affected components handle specially crafted TrueType font files. The vulnerability could allow remote code execution if a user opens a specially crafted TrueType font file. An attacker who successfully exploited this vulnerability could take complete control of an affected system.Further information on this exploit is available at : MS13-052
Affected Software
Microsoft .NET Framework 1.0 Service Pack 3Microsoft .NET Framework 1.1 Service Pack 1
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 Service Pack 1
Microsoft .NET Framework 4