Windows : Microsoft Bulletins : Microsoft .NET Framework Multiple DoS Vulnerabilities (KB4495610)

Anfälligkeitssuche		Suche in 219043 CVE Beschreibungen und 99761 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.815112

Kategorie: Windows : Microsoft Bulletins

Titel: Microsoft .NET Framework Multiple DoS Vulnerabilities (KB4495610)

Zusammenfassung: This host is missing an important security; update according to Microsoft KB4495610

Beschreibung: Summary:
This host is missing an important security
update according to Microsoft KB4495610

Vulnerability Insight:
Multiple flaws exist due to:

- Multiple errors when .NET Framework or .NET Core improperly handle web requests.

- An error when .NET Framework improperly handles objects in heap memory.

- An error when .NET Framework and .NET Core improperly process RegEx strings.

Vulnerability Impact:
Successful exploitation will allow an attacker
to cause a denial of service condition.

Affected Software/OS:
Microsoft .NET Framework 4.8 on Microsoft Windows 10 version 1607 and Microsoft Windows Server 2016.

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Querverweis: BugTraq ID: 108241
BugTraq ID: 108245
BugTraq ID: 108232
BugTraq ID: 108207
Common Vulnerability Exposure (CVE) ID: CVE-2019-0864
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0864
Common Vulnerability Exposure (CVE) ID: CVE-2019-0820
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820
RedHat Security Advisories: RHSA-2019:1259
https://access.redhat.com/errata/RHSA-2019:1259
Common Vulnerability Exposure (CVE) ID: CVE-2019-0980
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980
Common Vulnerability Exposure (CVE) ID: CVE-2019-0981
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0981

Copyright Copyright (C) 2019 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.815112
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft .NET Framework Multiple DoS Vulnerabilities (KB4495610)
Zusammenfassung:	This host is missing an important security; update according to Microsoft KB4495610
Beschreibung:	Summary: This host is missing an important security update according to Microsoft KB4495610 Vulnerability Insight: Multiple flaws exist due to: - Multiple errors when .NET Framework or .NET Core improperly handle web requests. - An error when .NET Framework improperly handles objects in heap memory. - An error when .NET Framework and .NET Core improperly process RegEx strings. Vulnerability Impact: Successful exploitation will allow an attacker to cause a denial of service condition. Affected Software/OS: Microsoft .NET Framework 4.8 on Microsoft Windows 10 version 1607 and Microsoft Windows Server 2016. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Querverweis:	BugTraq ID: 108241 BugTraq ID: 108245 BugTraq ID: 108232 BugTraq ID: 108207 Common Vulnerability Exposure (CVE) ID: CVE-2019-0864 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0864 Common Vulnerability Exposure (CVE) ID: CVE-2019-0820 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820 RedHat Security Advisories: RHSA-2019:1259 https://access.redhat.com/errata/RHSA-2019:1259 Common Vulnerability Exposure (CVE) ID: CVE-2019-0980 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980 Common Vulnerability Exposure (CVE) ID: CVE-2019-0981 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0981
Copyright	Copyright (C) 2019 Greenbone Networks GmbH