Microsoft Corporation

Short Name: Microsoft
Previous Names: [None Entered]
URL: http://www..microsoft.com/ [visit link]
Email: [None Entered]
Security URL: http://www.microsoft.com/security/ [visit link]
Security Email: securemicrosoft.com
Knowledge Base: http://support.microsoft.com/default.aspx?scid=fh;EN-US;KBHOWTO [visit link]
Notes: Contact web form: http://support.microsoft.com/common/international.aspx?rdpath=fh;en-us;cntactms Security web form: https://www.microsoft.com/technet/security/bulletin/alertus.aspx.

Full Details...

Vulnerabilities by Vendor Product

Microsoft Corporation

Microsoft Corporation
ASP.NET Watch-list
1.0
OSVDB ID: 10670 Microsoft ASP.NET Forms .aspx File Authentication Bypass
1.1
OSVDB ID: 10670 Microsoft ASP.NET Forms .aspx File Authentication Bypass
OSVDB ID: 2544 Microsoft ASP.NET Request Validation Bypass
OSVDB ID: 16813 Microsoft ASP.NET FileStream Method Nonexistent File Request Path Disclosure
.NET Framework SDK Watch-list
1.0 Service Pack 2
OSVDB ID: 9951 Microsoft Multiple Products GDIPlus.dll JPEG Processing Overflow
Antigen for Exchange Watch-list
9.x
OSVDB ID: 31888 Microsoft Malware Protection Engine PDF File Parsing Remote Code Execution
BackOffice Small Business Server 2000 Watch-list
Service Pack 1
Antigen for SMTP Gateway Watch-list
9.x
OSVDB ID: 31888 Microsoft Malware Protection Engine PDF File Parsing Remote Code Execution
PowerPoint Viewer ActiveX Watch-list
3.1
ASP Watch-list
3.0
OSVDB ID: 4863 Microsoft IIS Active Server Page Header DoS
Access Watch-list
2.0
OSVDB ID: 2917 Microsoft Access Known Database Attack
97
OSVDB ID: 5887 Microsoft Access 97 Cleartext Password Storage
2002
OSVDB ID: 9951 Microsoft Multiple Products GDIPlus.dll JPEG Processing Overflow
OSVDB ID: 29430 Microsoft Office Malformed Smart Tag Arbitrary Code Execution
OSVDB ID: 29428 Microsoft Office Malformed Chart Record Unspecified Arbitrary Code Execution
2003
OSVDB ID: 9951 Microsoft Multiple Products GDIPlus.dll JPEG Processing Overflow
OSVDB ID: 29430 Microsoft Office Malformed Smart Tag Arbitrary Code Execution
OSVDB ID: 29428 Microsoft Office Malformed Chart Record Unspecified Arbitrary Code Execution
2000
OSVDB ID: 29430 Microsoft Office Malformed Smart Tag Arbitrary Code Execution
OSVDB ID: 29428 Microsoft Office Malformed Chart Record Unspecified Arbitrary Code Execution
Asycfilt.dll (COM component) Watch-list
for Microsoft Windows 2000 SP4
OSVDB ID: 65221 Microsoft Windows Media Decompression Unspecified Remote Code Execution
for Windows XP SP2
OSVDB ID: 65221 Microsoft Windows Media Decompression Unspecified Remote Code Execution
for Windows XP SP3
OSVDB ID: 65221 Microsoft Windows Media Decompression Unspecified Remote Code Execution
for Windows XP Professional x64 Edition SP2
OSVDB ID: 65221 Microsoft Windows Media Decompression Unspecified Remote Code Execution
for Windows Server 2003 SP2
OSVDB ID: 65221 Microsoft Windows Media Decompression Unspecified Remote Code Execution
for Windows Server 2003 x64 Edition SP2
OSVDB ID: 65221 Microsoft Windows Media Decompression Unspecified Remote Code Execution
for Windows Server 2003 with SP2 for Itanium-based Systems
OSVDB ID: 65221 Microsoft Windows Media Decompression Unspecified Remote Code Execution
for Windows Vista SP1
OSVDB ID: 65221 Microsoft Windows Media Decompression Unspecified Remote Code Execution
for Windows Vista x64 Edition SP1
OSVDB ID: 65221 Microsoft Windows Media Decompression Unspecified Remote Code Execution
for Windows Server 2008 for Itanium-based Systems
OSVDB ID: 65221 Microsoft Windows Media Decompression Unspecified Remote Code Execution
for Windows Server 2008 for Itanium-based Systems SP2
OSVDB ID: 65221 Microsoft Windows Media Decompression Unspecified Remote Code Execution
for Windows 7
OSVDB ID: 65221 Microsoft Windows Media Decompression Unspecified Remote Code Execution
for Windows Server 2008 R2 for x64-based Systems
OSVDB ID: 65221 Microsoft Windows Media Decompression Unspecified Remote Code Execution
for Windows Server 2008 R2 for Itanium-based Systems
OSVDB ID: 65221 Microsoft Windows Media Decompression Unspecified Remote Code Execution
for Windows Server 2008
OSVDB ID: 65221 Microsoft Windows Media Decompression Unspecified Remote Code Execution
for Windows Server 2008 SP2
OSVDB ID: 65221 Microsoft Windows Media Decompression Unspecified Remote Code Execution
.NET Framework Watch-list
1.0
OSVDB ID: 3019 Multiple Vendor XML/SOAP HTTP Server DTD Parameter DoS
1.1
OSVDB ID: 3019 Multiple Vendor XML/SOAP HTTP Server DTD Parameter DoS
OSVDB ID: 9951 Microsoft Multiple Products GDIPlus.dll JPEG Processing Overflow
1.0 Service Pack 2
OSVDB ID: 9951 Microsoft Multiple Products GDIPlus.dll JPEG Processing Overflow
2.0
OSVDB ID: 27153 Microsoft .NET Framework Crafted Request Access Restriction Bypass
OSVDB ID: 29431 Microsoft .NET Framework AutoPostBack Property Unspecified XSS
2.0 Service Pack 2
OSVDB ID: 56905 Microsoft .NET Framework Request Scheduling Crafted HTTP Request Remote DoS
4.0
OSVDB ID: 68556 Microsoft .NET Framework x64 JIT Compiler Unprivileged Application Remote Code Execution
1.1 SP1
OSVDB ID: 68127 Microsoft ASP.NET ViewState Cryptographic Padding Remote Information Disclosure
2.0 SP1
OSVDB ID: 68127 Microsoft ASP.NET ViewState Cryptographic Padding Remote Information Disclosure
OSVDB ID: 66993 Microsoft .NET Framework / Silverlight CLR Virtual Delegate Handling Remote Code Execution
2.0 SP2
OSVDB ID: 68127 Microsoft ASP.NET ViewState Cryptographic Padding Remote Information Disclosure
OSVDB ID: 66993 Microsoft .NET Framework / Silverlight CLR Virtual Delegate Handling Remote Code Execution
OSVDB ID: 81133 Microsoft .NET Framework CRL (Common Language Runtime) Function Parameter Parsing Remote Code Execution
3.5
OSVDB ID: 68127 Microsoft ASP.NET ViewState Cryptographic Padding Remote Information Disclosure
OSVDB ID: 66993 Microsoft .NET Framework / Silverlight CLR Virtual Delegate Handling Remote Code Execution
3.5 SP1
OSVDB ID: 68127 Microsoft ASP.NET ViewState Cryptographic Padding Remote Information Disclosure
OSVDB ID: 66993 Microsoft .NET Framework / Silverlight CLR Virtual Delegate Handling Remote Code Execution
OSVDB ID: 71782 Microsoft .NET Framework x86 JIT Compiler XAML Browser Application (XBAP) Processing Stack Corruption
3.5.1
OSVDB ID: 68127 Microsoft ASP.NET ViewState Cryptographic Padding Remote Information Disclosure
OSVDB ID: 66993 Microsoft .NET Framework / Silverlight CLR Virtual Delegate Handling Remote Code Execution
OSVDB ID: 71782 Microsoft .NET Framework x86 JIT Compiler XAML Browser Application (XBAP) Processing Stack Corruption
OSVDB ID: 81133 Microsoft .NET Framework CRL (Common Language Runtime) Function Parameter Parsing Remote Code Execution
4.0
OSVDB ID: 68127 Microsoft ASP.NET ViewState Cryptographic Padding Remote Information Disclosure
OSVDB ID: 71782 Microsoft .NET Framework x86 JIT Compiler XAML Browser Application (XBAP) Processing Stack Corruption
Unspecified
OSVDB ID: 71013 .NET Framework Runtime Optimization Service Insecure File Permissions Privilege Escalation
2.0 SP2
OSVDB ID: 71782 Microsoft .NET Framework x86 JIT Compiler XAML Browser Application (XBAP) Processing Stack Corruption
1.0 SP3
OSVDB ID: 81133 Microsoft .NET Framework CRL (Common Language Runtime) Function Parameter Parsing Remote Code Execution
1.1 SP1
OSVDB ID: 81133 Microsoft .NET Framework CRL (Common Language Runtime) Function Parameter Parsing Remote Code Execution
4
OSVDB ID: 81133 Microsoft .NET Framework CRL (Common Language Runtime) Function Parameter Parsing Remote Code Execution
4.5
OSVDB ID: 81133 Microsoft .NET Framework CRL (Common Language Runtime) Function Parameter Parsing Remote Code Execution
4
OSVDB ID: 81721 Microsoft .NET Framework WPF Application Index Value Comparison Request Parsing Remote DoS
4
OSVDB ID: 81722 Microsoft .NET Framework Buffer Allocation XBAP / .NET Application Handling Remote Code Execution
3.5.1
OSVDB ID: 81733 Microsoft .NET Framework Partially Trusted Assembly Object Serialization Remote Code Execution
4
OSVDB ID: 81733 Microsoft .NET Framework Partially Trusted Assembly Object Serialization Remote Code Execution
1.0 SP3
OSVDB ID: 81733 Microsoft .NET Framework Partially Trusted Assembly Object Serialization Remote Code Execution
1.1 SP1
OSVDB ID: 81733 Microsoft .NET Framework Partially Trusted Assembly Object Serialization Remote Code Execution
2.0 SP2
OSVDB ID: 81733 Microsoft .NET Framework Partially Trusted Assembly Object Serialization Remote Code Execution
3.0 SP2
OSVDB ID: 81733 Microsoft .NET Framework Partially Trusted Assembly Object Serialization Remote Code Execution
3.5 SP1
OSVDB ID: 81733 Microsoft .NET Framework Partially Trusted Assembly Object Serialization Remote Code Execution
3.5.1
OSVDB ID: 81734 Microsoft .NET Framework Untrusted User Input Serialization Remote Code Execution
4
OSVDB ID: 81734 Microsoft .NET Framework Untrusted User Input Serialization Remote Code Execution
1.0 SP3
OSVDB ID: 81734 Microsoft .NET Framework Untrusted User Input Serialization Remote Code Execution
1.1 SP1
OSVDB ID: 81734 Microsoft .NET Framework Untrusted User Input Serialization Remote Code Execution
2.0 SP2
OSVDB ID: 81734 Microsoft .NET Framework Untrusted User Input Serialization Remote Code Execution
3.0 SP2
OSVDB ID: 81734 Microsoft .NET Framework Untrusted User Input Serialization Remote Code Execution
3.5 SP1
OSVDB ID: 81734 Microsoft .NET Framework Untrusted User Input Serialization Remote Code Execution



The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2012 Open Source Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use