Executive Summary
Summary | |
---|---|
Title | Vulnerabilities in .NET Framework Could Allow Remote Code Execution (931212) |
Informations | |||
---|---|---|---|
Name | MS07-040 | First vendor Publication | 2007-07-10 |
Vendor | Microsoft | Last vendor Modification | 2009-05-07 |
Severity (Vendor) | Critical | Revision | 4.0 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9.3 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Revision Note: V4.0 (May 7, 2009): Bulletin updated: Added as affected software: Microsoft .NET Framework 1.0 (KB928367) on 32-bit and x64-based editions of Windows Vista Service Pack 2 and on 32-bit editions of Windows Server 2008 Service Pack 2; Microsoft .NET Framework 1.1 (KB929729) on 32-bit and x64-based editions of Windows Vista Service Pack 2 and on 32-bit, x64-based, and Itanium-based editions of Windows Server 2008 Service Pack 2. This is a detection change only; there were no changes to the binaries. Customers who have already successfully installed KB928367 or KB929729 do not need to reinstall.Summary: This update resolves three privately reported vulnerabilities. Two of these vulnerabilities could allow remote code execution on client systems with .NET Framework installed, and one could allow information disclosure on Web servers running ASP.NET. In all remote code execution cases, users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. |
Original Source
Url : http://www.microsoft.com/technet/security/bulletin/MS07-040.mspx |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
67 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
33 % | CWE-200 | Information Exposure |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:1873 | |||
Oval ID: | oval:org.mitre.oval:def:1873 | ||
Title: | .NET JIT Compiler Vulnerability | ||
Description: | The Just In Time (JIT) Compiler service in Microsoft .NET Framework 1.0, 1.1, and 2.0 for Windows 2000, XP, Server 2003, and Vista allows user-assisted remote attackers to execute arbitrary code via unspecified vectors involving an "unchecked buffer," probably a buffer overflow, aka ".NET JIT Compiler Vulnerability". | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2007-0043 | Version: | 3 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista | Product(s): | Microsoft .NET Framework |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 3 |
OpenVAS Exploits
Date | Description |
---|---|
2009-03-15 | Name : Microsoft Security Bulletin MS07-040 File : nvt/remote-MS07-040.nasl |
2008-05-15 | Name : .NET JIT Compiler Vulnerability File : nvt/win_CVE-2007-0043.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
35956 | Microsoft .NET Framework Just In Time (JIT) Compiler Service Unspecified Arbi... |
35955 | Microsoft .NET Framework NULL Byte URL Arbitrary File Access |
35954 | Microsoft .NET Framework PE Loader Service Unspecified Arbitrary Code Execution |
Information Assurance Vulnerability Management (IAVM)
Date | Description |
---|---|
2007-07-12 | IAVM : 2007-A-0037 - Multiple Vulnerabilities in Microsoft .NET Framework (MS07-040) Severity : Category II - VMSKEY : V0014473 |
Snort® IPS/IDS
Date | Description |
---|---|
2017-07-20 | Microsoft .NET framework CLI loader denial of service attempt RuleID : 43226 - Revision : 3 - Type : OS-WINDOWS |
2017-07-20 | Microsoft .NET framework CLI loader denial of service attempt RuleID : 43225 - Revision : 3 - Type : OS-WINDOWS |
2014-11-16 | Microsoft ASP.NET null byte injection attempt RuleID : 31914 - Revision : 2 - Type : SERVER-WEBAPP |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2007-07-11 | Name : The remote .Net Framework is vulnerable to a code execution attack. File : smb_kb931212.nasl - Type : ACT_GATHER_INFO |
2007-07-10 | Name : The remote .Net Framework is vulnerable to code execution attack. File : smb_nt_ms07-040.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-11-16 21:25:19 |
|
2014-02-17 11:45:43 |
|
2013-11-11 12:41:05 |
|