KLA10659Multiple vulnerabilities in Microsoft .NET Framework

2015-09-08T00:00:00
ID KLA10659
Type kaspersky
Reporter Kaspersky Lab
Modified 2019-03-07T00:00:00

Description

Detect date:

09/08/2015

Severity:

High

Description:

Multiple serious vulnerabilities have been found in .NET Framework. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions or gain privileges.

Affected products:

.NET Framework 2.0 Service Pack 2
.NET Framework 3.5, 3.5.1
.NET Framework 4, 4.5, 4.5.1, 4.5.2, 4.6

Solution:

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories:

CVE-2015-2504
CVE-2015-2526

Impacts:

DoS

Related products:

Microsoft .NET Framework

CVE-IDS:

CVE-2015-25049.3High
CVE-2015-25265.0High

Microsoft official advisories:

KB list:

3074549
3074548
3074552
3074229
3074232
3074231
3074228
3074553
3089662