.net Framework Vulnerability - XAML Browser Apps

This topic was automatically closed 365 days after the last reply. New replies are no longer allowed.
11 years ago
Hi,

We're using nop 1.90 and since it was just "Patch Tuesday" from Microsoft, I'm curious about one of the latest vulnerabilities they patched:

http://technet.microsoft.com/en-us/security/bulletin/ms12-035

Rated "critical" it takls about:

"This security update resolves two privately reported vulnerabilities in the .NET Framework. The vulnerabilities could allow remote code execution on a client system if a user views a specially crafted webpage using a web browser that can run XAML Browser Applications (XBAPs)."

- Anything to worry about with nopCommerce 1.90?

thanks

David
http://FirewallShop.com
http://Layer7Solutions.com
http://LoadBalancerSolutions.com
http://AerohiveWireless.ca
http://Ipswitch.ca
0
11 years ago
DavidOptrics wrote:
http://technet.microsoft.com/en-us/security/bulletin/ms12-035

Just install the security update as recommended here (if you don't have automatic updating enabled)
Interested in the dedicated Premium support services provided by core developers? Please visit https://www.nopcommerce.com/nopcommerce-premium-support-services

Regards,
Andrei Mazulnitsyn
nopCommerce team
1
11 years ago
Hi Andrei,

Thanks - as it happens I realize it's to protect client computers FROM "badguy-created" pages that could exploit the issue.

We'll be patching our machines.

Thx again!
http://FirewallShop.com
http://Layer7Solutions.com
http://LoadBalancerSolutions.com
http://AerohiveWireless.ca
http://Ipswitch.ca
0
This topic was automatically closed 365 days after the last reply. New replies are no longer allowed.