Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2010-4254

Mono, when Moonlight before 2.3.0.1 or 2.99.x before 2.99.0.10 is used, does not properly validate arguments to generic methods, which allows remote attackers to bypass generic constraints, and possibly execute arbitrary code, via a crafted method call.

Related bugs and status

CVE-2010-4254 (Candidate) is related to these bugs:

Bug #691780: Security vulnerability allows violation of the type system and possibly execution of arbitrary code

Summary				In	Importance	Status
	691780	Security vulnerability allows violation of the type system and possibly execution of arbitrary code		moon (Ubuntu)	Undecided	Confirmed

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.exploit-db....
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://www.securityfoc...
MISC: http://www.vupen.com/e...
MISC: http://lists.opensuse....
MISC: http://lists.opensuse....
MISC: http://www.mono-projec...
MISC: https://bugzilla.novel...
MISC: https://bugzilla.novel...
MISC: https://github.com/mon...
MISC: https://github.com/mon...
MISC: https://github.com/mon...