KLA11133Multiple vulnerabilities in Microsoft Development Tools

2017-11-15T00:00:00
ID KLA11133
Type kaspersky
Reporter Kaspersky Lab
Modified 2019-03-07T00:00:00

Description

Detect date:

11/15/2017

Severity:

Warning

Description:

Multiple serious vulnerabilities have been found in Microsoft .NET Core and ASP.NET Core. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information and gain privileges.

Affected products:

.NET Core 1.0
.NET Core 1.1
.NET Core 2.0
ASP.NET Core 2.0
ASP.NET Core 1.0
ASP.NET Core 1.1

Solution:

Update to the latest version

Original advisories:

CVE-2017-11770
CVE-2017-11879
CVE-2017-11883
CVE-2017-8700

Impacts:

OSI

Related products:

Adobe Reader

CVE-IDS:

CVE-2017-117707.5Warning
CVE-2017-118798.8Warning
CVE-2017-118837.5Warning
CVE-2017-87007.5Warning

Microsoft official advisories: