CVE-2012-0162

critical

Microsoft

CVSS v3 Base Score

9.3

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS Score

57.6%

Exploitation probability in 30 days

Top 2% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Confidentiality

Integrity

Availability

Published: May 9, 2012 (5119 days ago)

Last Modified: April 29, 2026

Vendor: Microsoft

Source: NVD

Description

Microsoft .NET Framework 4 does not properly allocate buffers, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (aka XBAP) or (2) a crafted .NET Framework application, aka ".NET Framework Buffer Allocation Vulnerability."

CWE

CWE-119

Affected Products

microsoft .net framework

References

🔗 www.securityfocus.com 🔗 www.us-cert.gov 🔗 docs.microsoft.com 🔗 oval.cisecurity.org 🔗 www.securityfocus.com

CVE-2012-0162

Vulnerability Report

Description

CWE

Affected Products

References