CVE-2013-0001

Name of the Vulnerable Software and Affected Versions Microsoft .NET Framework versions 1.0 SP3 through 4.5

Description An information disclosure issue exists due to improper initialization of memory arrays in the Windows Forms component. This allows remote attackers to obtain sensitive information via a crafted XAML browser application (XBAP) or a crafted .NET Framework application that leverages a pointer to an unmanaged memory location.

Recommendations For Microsoft .NET Framework versions 1.0 SP3 through 4.5, update to a version that properly initializes memory arrays to prevent information disclosure. At the moment, there is no information about a newer version that contains a fix for this vulnerability.