Microsoft .NET Framework CVE-2012-2519 DLL Loading Arbitrary Code Execution Vulnerability

Microsoft .NET Framework is prone to a vulnerability that lets attackers execute arbitrary code.

An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location which contains a specially crafted Dynamic Link Library (DLL) file.

Attackers can exploit this issue remotely by placing the files in a remotely accessible SMB or WebDAV share location.

Successful exploits will compromise the application in the context of the currently logged-in user.


 

Privacy Statement
Copyright 2010, SecurityFocus