CVE-2012-0163

Microsoft .NET Framework Remote Code Execution via Improper Function Parameter Validation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-0163. PoCs published by Akita Software Security.

AI-analyzed exploit summary The exploit demonstrates an integer overflow vulnerability in the .NET Framework's EncoderParameter class, leading to heap corruption and potential arbitrary code execution with Full Trust permissions from a Partial Trust context.

Description

Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly validate function parameters, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (aka XBAP), (2) a crafted ASP.NET application, or (3) a crafted .NET Framework application, aka ".NET Framework Parameter Validation Vulnerability."

Exploits (1)

exploitdb WORKING POC

by Akita Software Security · textdoswindows

https://www.exploit-db.com/exploits/18777

View Code ZIP pw:eip

The exploit demonstrates an integer overflow vulnerability in the .NET Framework's EncoderParameter class, leading to heap corruption and potential arbitrary code execution with Full Trust permissions from a Partial Trust context.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: .NET Framework versions 2.0, 3.0, 3.5, and 4.0

No auth needed

Prerequisites: Ability to execute arbitrary code in a .NET Partial Trust environment

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Vendor Advisory vendor-advisory x_refsource_ms

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-025

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15495

US Government Resource third-party-advisory x_refsource_cert

http://www.us-cert.gov/cas/techalerts/TA12-101A.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/74377

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1026907

Scores

EPSS 0.3825

EPSS Percentile 98.4%

Details

CWE

CWE-20

Status published

Products (7)

microsoft/.net_framework 1.0 sp3

microsoft/.net_framework 1.1 sp1

microsoft/.net_framework 2.0 sp2

microsoft/.net_framework 3.5

microsoft/.net_framework 3.5.1

microsoft/.net_framework 4.0

microsoft/.net_framework 4.5

Published Apr 10, 2012

Tracked Since Feb 18, 2026