CVE-2011-1271

HIGH7.7Memory safety

Description

The JIT compiler in Microsoft .NET Framework 3.5 Gold and SP1, 3.5.1, and 4.0, when IsJITOptimizerDisabled is false, does not properly handle expressions related to null strings, which allows context-dependent attackers to bypass intended access restrictions, and consequently execute arbitrary code, in opportunistic circumstances by leveraging a crafted application, as demonstrated by (1) a crafted XAML browser application (aka XBAP), (2) a crafted ASP.NET application, or (3) a crafted .NET Framework application, aka ".NET Framework JIT Optimization Vulnerability."

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

Low

Affected products

Microsoft / .net_framework4.0 – 4.0
Microsoft / .net_framework3.5.1 – 3.5.1
Microsoft / .net_framework2.0 – 2.0
Microsoft / .net_framework3.5 – 3.5
Microsoft / .net_framework2.0 – 2.0
Microsoft / .net_framework3.5 – 3.5

References

MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12686
MISChttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-044
MISChttp://stackoverflow.com/questions/2135509/bug-only-occurring-when-compile-optimization-enabled/