CVE-2015-6115

Microsoft .NET Framework 2.0 SP2, 3.5, and 3.5.1 - ASLR Bypass via Crafted Web Site

Title source: llm
STIX 2.1

Description

Microsoft .NET Framework 2.0 SP2, 3.5, and 3.5.1 allows remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka ".NET ASLR Bypass."

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1034116

Scores

EPSS 0.1371
EPSS Percentile 96.0%

Details

CWE
CWE-200
Status published
Products (3)
microsoft/.net_framework 2.0 sp2
microsoft/.net_framework 3.5
microsoft/.net_framework 3.5.1
Published Nov 11, 2015
Tracked Since Feb 18, 2026