Advisory #65
Title.NET Runtime unsanitized NULL in environment variables
CVE IDNot assigned
Affected product.NET Runtime
Affected versionsAll versions
Vulnerability typeCWE-158 (Improper Neutralization of Null Byte or NUL Character)
DescriptionDISPUTED: .NET Runtime has a vulnerability that allows malicious environment variable values to set a different environment variable by using NULL bytes. NOTE: the vendor's position is that environment variable values should only take trusted and sanitized inputs.
StatusNo fix available
RecommendationDo not pass untrusted inputs to "ProcessStartInfo.Environment".