CVE-2009-2497

N/A

The Common Language Runtime (CLR) in Microsoft .NET Framework 2.0, 2.0 SP1, 2.0 SP2, 3.5, and 3.5 SP1, and Silverlight 2, does not properly handle interfaces, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (XBAP), (2) a crafted Silverlight application, (3) a crafted ASP.NET application, or (4) a crafted .NET Framework application, aka "Microsoft Silverlight and Microsoft .NET Framework CLR Vulnerability."

N/A

N/A

Microsoft Silverlight 和.NET Framework CLR Interface Handling 远程代码执行漏洞

Microsoft .NET Framework 2.0版本, 2.0 SP版本1, 2.0 SP2版本, 3.5版本,以及3.5 SP1和Silverlight 2版本的共同语言运行时(CLR)没有使当地处理页面，这会允许远程攻击者可以借助(1)一个特制的XAML浏览器应用程序(XBAP),(2)一个特制的ASP.NET应用程序或(3)一个特制的.NET框架应用程序,，获得没有预先设置的对栈内存的访问权,并执行任意代码，又称"Microsoft Silverlight和Microsoft .NET框架C

N/A

N/A