CVE-2012-1855

CVE Database · CVE-2012-1855

CVE-2012-1855

· N/AModified

CVSS v3.1

N/A

EPSS

20.50%

Published

Jun 12, 2012

Modified

Apr 28, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly handle function pointers, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (aka XBAP) or (2) a crafted .NET Framework application, aka ".NET Framework Memory Access Vulnerability."

Weaknesses (CWE)

CWE-94

Affected Products (33)

microsoft · .net_frameworkvulnerable

microsoft · windows_2003_server

microsoft · windows_server_2003

microsoft · windows_server_2008

microsoft · windows_vista

microsoft · windows_xp

microsoft · .net_frameworkvulnerable

· windows_7