Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA10753
HistoryFeb 09, 2016 - 12:00 a.m.

KLA10753 Multiple vulnerabilities in Microsoft .NET Framework

2016-02-0900:00:00
Kaspersky Lab
threats.kaspersky.com
19

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

8.1 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.948 High

EPSS

Percentile

99.2%

JSON

Detect date:

02/09/2016

Severity:

Warning

Description:

Multiple serious vulnerabilities have been found in Microsoft .NET Framework. Malicious users can exploit these vulnerabilities to cause denial of service or obtain sensitive information.

Affected products:

Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.5.1
Microsoft .NET Framework 4.5.2, 4.6, 4.6.1

Solution:

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories:

CVE-2016-0033
CVE-2016-0047

Impacts:

OSI

Related products:

Microsoft .NET Framework

CVE-IDS:

CVE-2016-00335.0Warning
CVE-2016-00475.0Warning

Microsoft official advisories:

KB list:

3135173
3135174
3137893

Related

nessus 1
mskb 1
openvas 1
prion 2
checkpoint_advisories 1
symantec 2
cve 2
nessus
nessus
MS16-019: Security Update for .NET Framework to Address Denial of Service (3137893)
2016-02-09 00:00:00
mskb
mskb
MS16-019: Security update for the .NET Framework to address Denial of Service: February 9, 2016
2016-02-09 00:00:00
openvas
openvas
Microsoft .NET Framework Denial of Service Vulnerabilities (3137893)
2016-02-10 00:00:00
prion
prion
Stack overflow
2016-02-10 11:59:00
Information disclosure
2016-02-10 11:59:00
checkpoint_advisories
checkpoint_advisories
Microsoft .NET Framework Denial of Service (MS16-019: CVE-2016-0033)
2016-02-09 00:00:00
symantec
symantec
Microsoft .NET Framework CVE-2016-0033 Stack Overflow Denial of Service Vulnerability
2016-02-09 00:00:00
Microsoft .NET Framework CVE-2016-0047 Information Disclosure Vulnerability
2016-02-09 00:00:00
cve
cve
CVE-2016-0033
2016-02-10 11:59:00
CVE-2016-0047
2016-02-10 11:59:00

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

8.1 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.948 High

EPSS

Percentile

99.2%

JSON
Related for KLA10753
nessus1mskb1openvas1prion2checkpoint_advisories1symantec2cve2