CVE-2010-3958 Information

Description

The x86 JIT compiler in Microsoft .NET Framework 2.0 SP2 3.5 SP1 3.5.1 and 4.0 does not properly compile function calls which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (aka XBAP) (2) a crafted ASP.NET application or (3) a crafted .NET Framework application aka .NET Framework Stack Corruption Vulnerability.\

Reference

http://www.us-cert.gov/cas/techalerts/TA11-102A.html https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-028 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A12406