Intrusion PreventionMS.NET.Framework.WinForms.Buffer.Overflow
Description
This indicates an attack attempt to exploit a Buffer Overflow vulnerability in Mircrosoft .NET Framework Windows Form.
The vulnerability is due to a race condition when copying the a size of an array of objects into a global memory buffer. A remote attacker may be able to exploit this by enticing a target user to download and run a socially crafted XBAP file.
Affected Products
Microsoft .NET Framework 1.0 Service Pack 3
Microsoft .NET Framework 1.1 Service Pack 1
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.5
Microsoft .NET Framework 3.5.1
Microsoft .NET Framework 4
Microsoft .NET Framework 4.5
Impact
System Compromise: Remote Attackers may gain control of vulnerable systems.
Recommended Actions
Apply patch available from the vendor's website.
http://technet.microsoft.com/security/bulletin/MS13-004
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2020-12-22 | 16.984 | Name:MS. NET. WinForms. Buffer. Overflow:MS. NET. Framework. WinForms. Buffer. Overflow |
| ID | 34353 |
| Created | Feb 06, 2013 |
| Updated | Nov 15, 2021 |
| Risk |
|
| CVE ID | CVE-2013-0002 |
| Exploit Prediction Score | 85.98% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | Other |