CVE-2012-0162

Name of the Vulnerable Software and Affected Versions Microsoft .NET Framework version 4

Description A remote code execution issue exists due to improper buffer allocation. This allows attackers to execute arbitrary code via a crafted XAML browser application or a specially crafted .NET Framework application. An attacker who successfully exploits this issue could run arbitrary code in the security context of the logged-on user, potentially installing programs, viewing, changing, or deleting data, or creating new accounts with full user rights. The impact may be less severe for users with limited user rights compared to those operating with administrative rights.

Recommendations For Microsoft .NET Framework version 4, at the moment, there is no information about a newer version that contains a fix for this vulnerability.