Some vulnerabilities have been reported in Microsoft .NET Framework, which can be exploited by malicious people to disclose potentially sensitive information or compromise a user's system.

1) A boundary error in the PE Loader can be exploited to execute arbitrary code with permissions of the logged-on user when the user is tricked into visiting a malicious web page and performs certain actions.

This vulnerability does not affect the .NET Framework when installed on Windows Vista.

2) An error exists in ASP.NET when processing URLs containing NULL-bytes, which can be exploited to disclose potentially sensitive information by gaining unauthorised access to certain parts of a web site via specially crafted requests.

3) A boundary error in the Just In Time Compiler (JIT) can be exploited to execute arbitrary code with permissions of the logged-on user when the user is tricked into visiting a malicious web page and performs certain actions.

This vulnerability only affects .NET Framework 2.0 and does not affect the .NET Framework when installed on Windows Vista.

Solution
Apply patches.
Further details available to Secunia VIM customers

Provided and/or discovered by
1) The vendor credits Dinis Cruz, OWASP.
2) Paul Craig, Security-Assessment.com.
3) The vendor credits Jeroen Frijters, Sumatra.

Changelog
Further details available to Secunia VIM customers

Original Advisory
MS07-040 (KB931212):
http://www.microsoft.com/technet/security/Bulletin/MS07-040.mspx

Security-Assessment.com:
http://security-assessment.com/files/advisories/2007-07-11_Multiple_.NET_Null_Byte_Injection_Vulnerabilities.pdf

Deep Links
Links available to Secunia VIM customers