Summary
Microsoft .NET is affected by multiples criticals vulnerabilities. Two of these vulnerabilities could allow remote code execution on client systems with .NET Framework installed, and one could allow information disclosure on Web servers running ASP.NET.
Solution
Microsoft has released an update to correct this issue, you can download it from the following web site:
http://www.microsoft.com/technet/security/bulletin/ms07-040.mspx
Severity
Classification
-
CVE CVE-2007-0041, CVE-2007-0042, CVE-2007-0043 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Cumulative Security Update for Internet Explorer (956390)
- Microsoft DNS Resolution Remote Code Execution Vulnerability (2509553)
- Microsoft Internet Explorer Multiple Memory Corruption Vulnerabilities (2870699)
- IE 5.01 5.5 6.0 Cumulative patch (890923)
- Microsoft Internet Explorer mshtml.dll Remote Memory Corruption Vulnerability (942615)