CVE-2008-5100

N/A Unknown
Published: November 17, 2008 Modified: April 23, 2026
View on NVD

Description

The strong name (SN) implementation in Microsoft .NET Framework 2.0.50727 relies on the digital signature Public Key Token embedded in the pathname of a DLL file instead of the digital signature of this file itself, which makes it easier for attackers to bypass Global Assembly Cache (GAC) and Code Access Security (CAS) protection mechanisms, aka MSRC ticket MSRC8566gs.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://securityreason.com/securityalert/4605
Source: cve@mitre.org
http://www.applicationsecurity.co.il/.NET-Framework-Rootkits.aspx
Source: cve@mitre.org
http://www.applicationsecurity.co.il/LinkClick.aspx?fileticket=ycIS1bewMBI%3d&tabid=161&mid=555
Source: cve@mitre.org
Exploit
http://www.securityfocus.com/archive/1/498311/100/0/threaded
Source: cve@mitre.org
http://securityreason.com/securityalert/4605
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.applicationsecurity.co.il/.NET-Framework-Rootkits.aspx
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.applicationsecurity.co.il/LinkClick.aspx?fileticket=ycIS1bewMBI%3d&tabid=161&mid=555
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
http://www.securityfocus.com/archive/1/498311/100/0/threaded
Source: af854a3a-2127-422b-91ae-364da2661108

8 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
27.8%
96th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-310

Affected Vendors

microsoft

Related CVEs

CVE-2026-41044 N/A
CVE-2026-41043 N/A
CVE-2026-40466 N/A
CVE-2025-62233 N/A
CVE-2026-6272 N/A