Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB4040973
HistorySep 12, 2017 - 7:00 a.m.

Description of the Security and Quality Rollup for the .NET Framework 4.6, 4.6.1, 4.6.2, and 4.7 for Windows 7 SP1 and Windows Server 2008 R2 SP1 and for the .NET Framework 4.6 for Windows Server 2008 SP2: September 12, 2017

2017-09-1207:00:00
Microsoft
support.microsoft.com
41

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.4 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.972 High

EPSS

Percentile

99.8%

JSON

Description of the Security and Quality Rollup for the .NET Framework 4.6, 4.6.1, 4.6.2, and 4.7 for Windows 7 SP1 and Windows Server 2008 R2 SP1 and for the .NET Framework 4.6 for Windows Server 2008 SP2: September 12, 2017

View products that this article applies to.

Summary

This security update resolves a vulnerability in the Microsoft .NET Framework that could allow remote code execution when Microsoft .NET Framework processes untrusted input. An attacker who successfully exploited this vulnerability in software by using the .NET Framework could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts that have full user rights. Users whose accounts are configured to have fewer user rights on the system could be less affected than users who operate with administrative user rights.To exploit the vulnerability, an attacker would first have to convince the user to open a malicious document or application.This security update addresses the vulnerability by correcting how .NET validates untrusted input. To learn more about this vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2017-8759.Important

  • All updates for .NET Framework 4.6, 4.6.1, 4.6.2, and 4.7 require the d3dcompiler_47.dll update to be installed. We recommend that you install the included d3dcompiler_47.dll update before you apply this update. For more information about the d3dcompiler_47.dll update, see KB 4019990 for Windows 7 SP1 and Windows Server 2008 R2 SP1. Or, see KB 4019478 for Windows Server 2008.
  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

Quality and reliability fixes

Networking

  • A fix included in the May Monthly Security and Quality Rollup is being changed to improve the performance of network latency about Active Directory lookups for enhanced key usage (EKU) object identifiers (OIDs) function that is used in TLS (Transport Layer Security) and SSL (Secure Sockets Layer) certificates.
    WPF

  • Under certain circumstances, Windows Presentation Framework (WPF) applications (notably, Visual Studio) are observed to consume disproportionate amount of CPU cycles in relation to their actual workload. Frequently, these applications eventually crash. This is seen in WPF applications that are left running in a locked logon session, or when they are left running in a disconnected Terminal Services session.
    CLR

  • Under certain circumstances, the JIT compiler can perform an incorrect common subexpression elimination (CSE) optimization which results in an incorrect value being computed.

  • For certain XslCompiledTransform objects, the JIT compiler can perform an incorrect tail call optimization.

  • When you run certain large server workloads, the JIT compiler can cause an Access Violation and causes early termination of the common language runtime (CLR).
    Winforms

  • When Windows Forms controls are anchored to the right edge (a nondefault anchor style value), in PerMonitor DPI aware application, anchoring distance is scaled incorrectly on each scaling pass. You may see that controls are moving toward the right edge of the window on each scaling pass and eventually disappear, or that controls are stretched incorrectly.
    .NET Framework

  • Applications that run on the .NET Framework do not respect the settings that are specified in the registry for AppContext switches. Regardless of the registry option setting for an AppContext flag, the application behaves as if the value specified is set to “false.”

Known issues in this update

  • After you install the September 12, 2017, .NET Security and Quality Rollups that apply to the .NET Framework 4.6, 4.6.1, 4.6.2, and 4.7, you experience rendering issues in Windows Presentation Foundation (WPF) applications that use WPF types in a Windows service. For more information, see KB 4043601.

Additional information about this security update

For more information about this security update as it relates to Windows 7 Service Pack 1 (SP1) and Windows Server 2008 R2 SP1, see the following article in the Microsoft Knowledge Base:4041083 Security and Quality Rollup for the .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 and 4.7 updates for Windows 7 SP1 and Windows Server 2008 R2 SP1: September 12, 2017For more information about this security update as it relates to Windows Server 2008 Service Pack 2 (SP2), see the following article in the Microsoft Knowledge Base:4041086 Security and Quality Rollup for the .NET Framework 2.0 SP2, 4.5.2, 4.6, 4.6.1, 4.6.2 and 4.7 updates for Windows Server 2008 SP2: September 12, 2017

How to obtain and install the update

Method 1: Windows Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to get security updates automatically, see Windows Update: FAQ.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog.

  • For Windows 7 SP1 and Windows Server 2008 R2 SP1, go to 4041083.
  • For Windows Server 2008 R2 SP1, go to 4041086.

Method 3: Windows Software Update Services (WSUS)

On your WSUS server, follow these steps:

  1. Click Start, clickAdministrative Tools, and then clickMicrosoft Windows Server Update Services 3.0.
  2. Expand ComputerName, and then clickAction.
  3. Click Import Updates.
  4. WSUS will open a browser window in which you may be prompted to install an ActiveX control. You must install the ActiveX control to continue.
  5. Once the control is installed, you will see the Microsoft Update Catalog screen. Enter4041083for Windows 7 SP1 and Windows Server 2008 R2 SP1 or enter4041086for Windows Server 2008 SP2 into theSearchbox, and then clickSearch.
  6. Locate the .NET Framework packages that match the operating systems, languages, and processors in your environment. Click Add to add them to your basket.
  7. When you have selected all the packages you need, click View Basket.
  8. Click Import to import the packages to your WSUS server.
  9. Click Close once the packages have been imported to return to WSUS.
    The updates are now available for installation through WSUS.

Update deployment information

For deployment details for this security update, go to the following article in the Microsoft Knowledge Base:20170912 Security update deployment information: September 12, 2017

Update removal information

Note We do not recommend that you remove any security update. To remove this update, use thePrograms and Features item in Control Panel.

Update restart information

This update does not require a system restart after you apply it unless files that are being updated are locked or are being used.

Update replacement information

This update replaces updates 4019115, 4035039, 4014984, 4032116, 4019112, 4035036, 4014981, and 4032113.

File information

File hash

Package Name Package Hash SHA 1 Package Hash SHA 2
NDP46-KB4040973-x86.exe F27C90BF535FEFC6CF521CA5702D95FE26B6C8BA 79CB576A0EF2D035EB37B86FB6224ECD2D8626510D8F8679619CCCEDFD748BC1
NDP46-KB4040973-x64.exe 5DA041181051D83E3AAD0950EF4B5C7DB58520F7 28592EA6D3CAF87A1E8A1D66921AAF3DB18A429F5E6EDD00EEBA2A7AE8C65CA8

File attributes

The English (United States) version of this hotfix installs files that have the attributes that are listed in the following tables. The dates and the times for these files are listed in Coordinated Universal Time (UTC). The dates and the times for these files on your local computer are displayed in your local time together with your current daylight saving time (DST) bias. Additionally, the dates and the times may change when you perform certain operations on the files.For all x86-based systemsFile name File version File size Date Time
Aspnet_perf.dll 4.7.2114.0 42,672 31-Aug-2017 03:37
aspnet_wp.exe 4.7.2114.0 46,200 31-Aug-2017 03:38
clr.dll 4.7.2114.0 7,221,904 31-Aug-2017 03:37
clrjit.dll 4.7.2114.0 522,912 31-Aug-2017 03:37
dfdll.dll 4.7.2114.0 159,896 31-Aug-2017 03:37
GlobalUserInterface.CompositeFont 116,922 31-Aug-2017 03:37
mscordacwks.dll 4.7.2114.0 1,341,104 31-Aug-2017 03:37
mscordbi.dll 4.7.2114.0 1,164,960 31-Aug-2017 03:37
mscoreei.dll 4.7.2114.0 511,656 31-Aug-2017 03:37
mscorlib.dll 4.7.2114.0 5,614,240 31-Aug-2017 03:37
msvcp120_clr0400.dll 12.0.52519.0 485,576 31-Aug-2017 03:38
msvcr120_clr0400.dll 12.0.52519.0 987,840 31-Aug-2017 03:38
VsVersion.dll 14.7.2114.0 19,112 31-Aug-2017 03:37
peverify.dll 4.7.2114.0 188,584 31-Aug-2017 03:38
PresentationCore.dll 4.7.2114.0 3,616,608 31-Aug-2017 03:37
PresentationFramework.dll 4.7.2114.0 6,200,184 31-Aug-2017 03:37
PresentationHost_v0400.dll 4.7.2114.0 197,344 31-Aug-2017 03:37
PresentationHost_v0400.dll.mui 4.7.2114.0 84,712 31-Aug-2017 03:37
PresentationNative_v0400.dll 4.7.2114.0 827,112 31-Aug-2017 03:37
ServiceMonikerSupport.dll 4.7.2114.0 29,400 31-Aug-2017 03:38
SMDiagnostics.dll 4.7.2114.0 73,392 31-Aug-2017 03:37
SOS.dll 4.7.2114.0 743,568 31-Aug-2017 03:37
System.Activities.dll 4.7.2114.0 1,532,616 31-Aug-2017 03:37
System.ComponentModel.DataAnnotations.dll 4.7.2114.0 126,272 31-Aug-2017 03:37
System.Core.dll 4.7.2114.0 1,381,536 31-Aug-2017 03:37
System.Data.Entity.dll 4.7.2114.0 4,034,248 31-Aug-2017 03:37
System.IdentityModel.dll 4.7.2114.0 1,088,728 31-Aug-2017 03:37
System.IdentityModel.Services.dll 4.7.2114.0 198,392 31-Aug-2017 03:38
System.Runtime.Serialization.dll 4.7.2114.0 1,052,936 31-Aug-2017 03:37
System.ServiceModel.Channels.dll 4.7.2114.0 157,944 31-Aug-2017 03:37
System.ServiceModel.Discovery.dll 4.7.2114.0 308,472 31-Aug-2017 03:37
System.ServiceModel.dll 4.7.2114.0 6,311,120 31-Aug-2017 03:37
System.ServiceModel.Internals.dll 4.7.2114.0 254,224 31-Aug-2017 03:37
System.ServiceModel.Routing.dll 4.7.2114.0 130,800 31-Aug-2017 03:37
System.ServiceModel.WasHosting.dll 4.7.2114.0 39,672 31-Aug-2017 03:38
System.Web.ApplicationServices.dll 4.7.2114.0 70,936 31-Aug-2017 03:37
System.Web.Extensions.dll 4.7.2114.0 1,849,568 31-Aug-2017 03:38
System.Workflow.Activities.dll 4.7.2114.0 1,051,368 31-Aug-2017 03:38
System.Workflow.ComponentModel.dll 4.7.2114.0 1,541,880 31-Aug-2017 03:38
System.Workflow.Runtime.dll 4.7.2114.0 499,424 31-Aug-2017 03:38
System.Runtime.Caching.dll 4.7.2114.0 109,944 31-Aug-2017 03:38
System.Data.dll 4.7.2114.0 3,391,152 31-Aug-2017 03:37
System.Data.SqlXml.dll 4.7.2114.0 734,408 31-Aug-2017 03:37
System.Deployment.dll 4.7.2114.0 845,512 31-Aug-2017 03:37
System.DirectoryServices.Protocols.dll 4.7.2114.0 201,520 31-Aug-2017 03:37
System.dll 4.7.2114.0 3,526,280 31-Aug-2017 03:37
System.Drawing.dll 4.7.2114.0 600,248 31-Aug-2017 03:37
System.Management.dll 4.7.2114.0 415,424 31-Aug-2017 03:37
System.Runtime.Remoting.dll 4.7.2114.0 347,368 31-Aug-2017 03:37
System.Security.dll 4.7.2114.0 316,608 31-Aug-2017 03:37
System.Transactions.dll 4.7.2114.0 307,408 31-Aug-2017 03:37
System.Web.dll 4.7.2114.0 5,406,376 31-Aug-2017 03:38
System.Windows.Controls.Ribbon.dll 4.7.2114.0 742,816 31-Aug-2017 03:37
System.Windows.Forms.dll 4.7.2114.0 5,181,656 31-Aug-2017 03:37
System.Xaml.dll 4.7.2114.0 641,184 31-Aug-2017 03:37
System.Xml.dll 4.7.2114.0 2,666,656 31-Aug-2017 03:37
webengine.dll 4.7.2114.0 24,744 31-Aug-2017 03:38
webengine4.dll 4.7.2114.0 550,064 31-Aug-2017 03:38
WindowsBase.dll 4.7.2114.0 1,283,920 31-Aug-2017 03:37
WMINet_Utils.dll 4.7.2114.0 136,368 31-Aug-2017 03:37
WorkflowServiceHostPerformanceCounters.dll 4.7.2114.0 89,376 31-Aug-2017 03:37
WPFFontCache_v0400.exe.mui 4.7.2114.0 19,160 31-Aug-2017 03:37
WPFFontCache_v0400.exe 4.7.2114.0 25,720 31-Aug-2017 03:37
wpfgfx_v0400.dll 4.7.2114.0 1,344,696 31-Aug-2017 03:37
Placeholder.dll 4.7.2114.0 24,752 31-Aug-2017 03:37
PenIMC2_v0400.dll 4.7.2114.0 82,104 31-Aug-2017 03:37
For all x64-based systemsFile name File version File size Date Time
Aspnet_perf.dll 4.7.2114.0 46,256 31-Aug-2017 03:55
Aspnet_perf.dll 4.7.2114.0 42,672 31-Aug-2017 03:37
aspnet_wp.exe 4.7.2114.0 50,808 31-Aug-2017 03:55
aspnet_wp.exe 4.7.2114.0 46,200 31-Aug-2017 03:38
clr.dll 4.7.2114.0 10,326,160 31-Aug-2017 03:54
clr.dll 4.7.2114.0 7,221,904 31-Aug-2017 03:37
clrjit.dll 4.7.2114.0 1,129,120 31-Aug-2017 03:54
clrjit.dll 4.7.2114.0 522,912 31-Aug-2017 03:37
compatjit.dll 4.7.2114.0 1,259,688 31-Aug-2017 03:54
dfdll.dll 4.7.2114.0 191,640 31-Aug-2017 03:54
dfdll.dll 4.7.2114.0 159,896 31-Aug-2017 03:37
GlobalUserInterface.CompositeFont 116,922 31-Aug-2017 03:37
mscordacwks.dll 4.7.2114.0 1,838,256 31-Aug-2017 03:54
mscordacwks.dll 4.7.2114.0 1,341,104 31-Aug-2017 03:37
mscordbi.dll 4.7.2114.0 1,618,592 31-Aug-2017 03:54
mscordbi.dll 4.7.2114.0 1,164,960 31-Aug-2017 03:37
mscoreei.dll 4.7.2114.0 636,072 31-Aug-2017 03:54
mscoreei.dll 4.7.2114.0 511,656 31-Aug-2017 03:37
mscorlib.dll 4.7.2114.0 5,401,768 31-Aug-2017 03:54
mscorlib.dll 4.7.2114.0 5,614,240 31-Aug-2017 03:37
msvcp120_clr0400.dll 12.0.52519.0 690,008 31-Aug-2017 03:55
msvcp120_clr0400.dll 12.0.52519.0 485,576 31-Aug-2017 03:38
msvcr120_clr0400.dll 12.0.52519.0 993,632 31-Aug-2017 03:55
msvcr120_clr0400.dll 12.0.52519.0 987,840 31-Aug-2017 03:38
VsVersion.dll 14.7.2114.0 19,112 31-Aug-2017 03:54
VsVersion.dll 14.7.2114.0 19,112 31-Aug-2017 03:37
peverify.dll 4.7.2114.0 260,264 31-Aug-2017 03:55
peverify.dll 4.7.2114.0 188,584 31-Aug-2017 03:38
PresentationCore.dll 4.7.2114.0 3,590,848 31-Aug-2017 03:54
PresentationCore.dll 4.7.2114.0 3,616,608 31-Aug-2017 03:37
PresentationFramework.dll 4.7.2114.0 6,200,184 31-Aug-2017 03:37
PresentationHost_v0400.dll 4.7.2114.0 256,736 31-Aug-2017 03:54
PresentationHost_v0400.dll.mui 4.7.2114.0 84,720 31-Aug-2017 03:54
PresentationHost_v0400.dll 4.7.2114.0 197,344 31-Aug-2017 03:37
PresentationHost_v0400.dll.mui 4.7.2114.0 84,712 31-Aug-2017 03:37
PresentationNative_v0400.dll 4.7.2114.0 1,109,736 31-Aug-2017 03:54
PresentationNative_v0400.dll 4.7.2114.0 827,112 31-Aug-2017 03:37
ServiceMonikerSupport.dll 4.7.2114.0 31,448 31-Aug-2017 03:55
ServiceMonikerSupport.dll 4.7.2114.0 29,400 31-Aug-2017 03:38
SMDiagnostics.dll 4.7.2114.0 73,392 31-Aug-2017 03:37
SOS.dll 4.7.2114.0 872,080 31-Aug-2017 03:54
SOS.dll 4.7.2114.0 743,568 31-Aug-2017 03:37
System.Activities.dll 4.7.2114.0 1,532,616 31-Aug-2017 03:37
System.ComponentModel.DataAnnotations.dll 4.7.2114.0 126,272 31-Aug-2017 03:37
System.Core.dll 4.7.2114.0 1,381,536 31-Aug-2017 03:37
System.Data.Entity.dll 4.7.2114.0 4,034,248 31-Aug-2017 03:37
System.IdentityModel.dll 4.7.2114.0 1,088,728 31-Aug-2017 03:37
System.IdentityModel.Services.dll 4.7.2114.0 198,392 31-Aug-2017 03:38
System.Runtime.Serialization.dll 4.7.2114.0 1,052,936 31-Aug-2017 03:37
System.ServiceModel.Channels.dll 4.7.2114.0 157,944 31-Aug-2017 03:37
System.ServiceModel.Discovery.dll 4.7.2114.0 308,472 31-Aug-2017 03:37
System.ServiceModel.dll 4.7.2114.0 6,311,120 31-Aug-2017 03:37
System.ServiceModel.Internals.dll 4.7.2114.0 254,224 31-Aug-2017 03:37
System.ServiceModel.Routing.dll 4.7.2114.0 130,800 31-Aug-2017 03:37
System.ServiceModel.WasHosting.dll 4.7.2114.0 39,672 31-Aug-2017 03:38
System.Web.ApplicationServices.dll 4.7.2114.0 70,936 31-Aug-2017 03:37
System.Web.Extensions.dll 4.7.2114.0 1,849,568 31-Aug-2017 03:38
System.Workflow.Activities.dll 4.7.2114.0 1,051,368 31-Aug-2017 03:38
System.Workflow.ComponentModel.dll 4.7.2114.0 1,541,880 31-Aug-2017 03:38
System.Workflow.Runtime.dll 4.7.2114.0 499,424 31-Aug-2017 03:38
System.Runtime.Caching.dll 4.7.2114.0 109,944 31-Aug-2017 03:38
System.Data.dll 4.7.2114.0 3,455,152 31-Aug-2017 03:54
System.Data.dll 4.7.2114.0 3,391,152 31-Aug-2017 03:37
System.Data.SqlXml.dll 4.7.2114.0 734,408 31-Aug-2017 03:37
System.Deployment.dll 4.7.2114.0 845,512 31-Aug-2017 03:37
System.DirectoryServices.Protocols.dll 4.7.2114.0 201,520 31-Aug-2017 03:37
System.dll 4.7.2114.0 3,526,280 31-Aug-2017 03:37
System.Drawing.dll 4.7.2114.0 600,248 31-Aug-2017 03:37
System.Management.dll 4.7.2114.0 415,424 31-Aug-2017 03:37
System.Runtime.Remoting.dll 4.7.2114.0 347,368 31-Aug-2017 03:37
System.Security.dll 4.7.2114.0 316,608 31-Aug-2017 03:37
System.Transactions.dll 4.7.2114.0 310,992 31-Aug-2017 03:54
System.Transactions.dll 4.7.2114.0 307,408 31-Aug-2017 03:37
System.Web.dll 4.7.2114.0 5,388,968 31-Aug-2017 03:55
System.Web.dll 4.7.2114.0 5,406,376 31-Aug-2017 03:38
System.Windows.Controls.Ribbon.dll 4.7.2114.0 742,816 31-Aug-2017 03:37
System.Windows.Forms.dll 4.7.2114.0 5,181,656 31-Aug-2017 03:37
System.Xaml.dll 4.7.2114.0 641,184 31-Aug-2017 03:37
System.XML.dll 4.7.2114.0 2,666,656 31-Aug-2017 03:37
webengine.dll 4.7.2114.0 26,280 31-Aug-2017 03:55
webengine.dll 4.7.2114.0 24,744 31-Aug-2017 03:38
webengine4.dll 4.7.2114.0 667,824 31-Aug-2017 03:55
webengine4.dll 4.7.2114.0 550,064 31-Aug-2017 03:38
WindowsBase.dll 4.7.2114.0 1,283,920 31-Aug-2017 03:37
WMINet_Utils.dll 4.7.2114.0 188,088 31-Aug-2017 03:54
WMINet_Utils.dll 4.7.2114.0 136,368 31-Aug-2017 03:37
WorkflowServiceHostPerformanceCounters.dll 4.7.2114.0 101,152 31-Aug-2017 03:54
WorkflowServiceHostPerformanceCounters.dll 4.7.2114.0 89,376 31-Aug-2017 03:37
WPFFontCache_v0400.exe.mui 4.7.2114.0 19,168 31-Aug-2017 06:36
WPFFontCache_v0400.exe.mui 4.7.2114.0 19,160 31-Aug-2017 03:37
WPFFontCache_v0400.exe 4.7.2114.0 26,744 31-Aug-2017 06:36
WPFFontCache_v0400.exe 4.7.2114.0 25,720 31-Aug-2017 03:37
wpfgfx_v0400.dll 4.7.2114.0 1,764,536 31-Aug-2017 03:54
wpfgfx_v0400.dll 4.7.2114.0 1,344,696 31-Aug-2017 03:37
Placeholder.dll 4.7.2114.0 25,776 31-Aug-2017 03:54
Placeholder.dll 4.7.2114.0 24,752 31-Aug-2017 03:37
PenIMC2_v0400.dll 4.7.2114.0 99,000 31-Aug-2017 03:54
PenIMC2_v0400.dll 4.7.2114.0 82,104 31-Aug-2017 03:37

How to obtain help and support for this security update

Applies to

This article applies to the following:

  • Microsoft .NET Framework 4.6, 4.6.1, 4.6.2 and 4.7 when used with:
    • Windows Server 2008 R2 Service Pack 1
    • Windows 7 Service Pack 1
  • Microsoft .NET Framework 4.6 when used with:
    • Windows Server 2008 Service Pack 2

Related

talosblog 3
trendmicroblog 2
openvas 14
mskb 31
checkpoint_advisories 1
myhack58 3
symantec 1
mmpc 4
nessus 8
kaspersky 1
cve 1
cisa_kev 1
cert 1
exploitpack 1
mssecure 2
msrc 1
packetstorm 1
attackerkb 1
zdt 1
prion 1
mscve 1
exploitdb 1
thn 3
fireeye 5
threatpost 3
seebug 1
malwarebytes 2
securelist 10
krebs 1
canvas 1
qualysblog 3
ics 1
talosblog
talosblog
Threat Round Up for December 29 - January 5
2018-01-05 11:46:00
SWEED: Exposing years of Agent Tesla campaigns
2019-07-16 05:47:33
Microsoft Patch Tuesday - September 2017
2017-09-12 15:41:00
trendmicroblog
trendmicroblog
This Week in Security News
2017-11-22 14:00:16
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of September 11, 2017
2017-09-15 14:59:53
openvas
openvas
Microsoft .NET Framework Remote Code Execution Vulnerability (KB4040980)
2017-09-13 00:00:00
Microsoft .NET Framework Remote Code Execution Vulnerability (KB4040975)
2017-09-13 00:00:00
Microsoft .NET Framework Remote Code Execution Vulnerability (KB4041086)
2017-09-14 00:00:00
mskb
mskb
Security and Quality Rollup for .NET Framework 3.5 for Windows Server 2012 (KB 4040979)
2017-09-12 07:00:00
Security and Quality Rollup for the .NET Framework 2.0 SP2, 4.5.2, and 4.6 for Windows Server 2008 SP2: September 12, 2017
2017-09-12 00:00:00
Description of the Security Only update for the .NET Framework 4.6, 4.6.1, 4.6.2, and 4.7 for Windows 7 SP1 and Windows Server 2008 R2 SP1 and for the .NET Framework 4.6 for Windows Server 2008 SP2: September 12, 2017
2017-09-12 07:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft .NET Framework Remote Code Execution (CVE-2017-8759)
2017-09-12 00:00:00
myhack58
myhack58
Microsoft the Microsoft . NET Framework flaws vulnerability bug(CVE–2017–8759)alerts-a vulnerability alert-the black bar safety net
2017-09-15 00:00:00
The latest exposure of the RTF vulnerability beside the use of research to explore the topic guide-vulnerability warning-the black bar safety net
2017-09-21 00:00:00
The macro perspective of the office vulnerability, 2010-2018-a vulnerability warning-the black bar safety net
2019-06-13 00:00:00
symantec
symantec
Microsoft Windows .NET Framework CVE-2017-8759 Remote Code Execution Vulnerability
2017-09-12 00:00:00
mmpc
mmpc
Exploit for CVE-2017-8759 detected and neutralized
2017-09-12 18:46:50
Windows Defender ATP machine learning and AMSI: Unearthing script-based attacks that ‘live off the land’
2017-12-04 14:00:07
Windows Defender ATP machine learning and AMSI: Unearthing script-based attacks that ‘live off the land’
2017-12-04 14:00:51
nessus
nessus
Security and Quality Rollup for .NET Framework (Sep 2017)
2017-09-12 00:00:00
Windows 2008 September 2017 Multiple Security Updates
2017-09-12 00:00:00
Windows Server 2012 September 2017 Security Updates
2017-09-12 00:00:00
kaspersky
kaspersky
KLA11101 Arbitrary code execution vulnerability in Microsoft .NET Framework
2017-09-12 00:00:00
cve
cve
CVE-2017-8759
2017-09-13 01:29:00
cisa_kev
cisa_kev
Microsoft .NET Framework Remote Code Execution Vulnerability
2021-11-03 00:00:00
cert
cert
Microsoft .NET framework SOAP Moniker PrintClientProxy remote code execution vulnerability
2017-09-13 00:00:00
exploitpack
exploitpack
Microsoft Windows .NET Framework - Remote Code Execution
2017-09-13 00:00:00
mssecure
mssecure
Windows Defender ATP machine learning and AMSI: Unearthing script-based attacks that ‘live off the land’
2017-12-04 14:00:07
Office 365 Advanced Threat Protection defense for corporate networks against recent Office exploit attacks
2017-11-21 13:46:01
msrc
msrc
CVE-2017-8759 のエクスプロイトの検出と無効化
2017-09-27 07:00:00
packetstorm
packetstorm
Microsoft .NET Framework Remote Code Execution
2017-09-14 00:00:00
attackerkb
attackerkb
CVE-2017-8759
2017-09-13 00:00:00
zdt
zdt
Microsoft Windows .NET Framework - Remote Code Execution 0day Exploit
2017-09-13 00:00:00
prion
prion
Remote code execution
2017-09-13 01:29:00
mscve
mscve
.NET Framework Remote Code Execution Vulnerability
2017-09-12 07:00:00
exploitdb
exploitdb
Microsoft Windows .NET Framework - Remote Code Execution
2017-09-13 00:00:00
thn
thn
Hackers Use New Flash Zero-Day Exploit to Distribute FinFisher Spyware
2017-10-16 04:52:00
Hackers Exploiting Three Microsoft Office Flaws to Spread Zyklon Malware
2018-01-17 07:25:00
Immediately Patch Windows 0-Day Flaw That's Being Used to Spread Spyware
2017-09-13 00:09:00
fireeye
fireeye
FireEye Uncovers CVE-2017-8759: Zero-Day Used in the Wild to Distribute FINSPY
2017-09-12 13:00:00
Microsoft Office Vulnerabilities Used to Distribute Zyklon Malware in Recent Campaign
2018-01-17 12:00:00
Microsoft Office Vulnerabilities Used to Distribute Zyklon Malware in Recent Campaign
2018-01-17 17:00:00
threatpost
threatpost
Attackers Use Microsoft Office Vulnerabilities to Spread Zyklon Malware
2018-01-17 18:26:01
Adobe Patches Flash Zero Day Exploited by Black Oasis APT
2017-10-16 11:46:13
Microsoft Patches .NET Zero Day Vulnerability in September Update
2017-09-12 15:59:40
seebug
seebug
FireEye Uncovers CVE-2017-8759: Zero-Day Used in the Wild to Distribute FINSPY
2017-09-14 00:00:00
malwarebytes
malwarebytes
PSA: New Microsoft Word 0day used in the wild
2017-09-13 22:49:19
Decoy Microsoft Word document delivers malware through a RAT
2017-10-13 15:00:41
securelist
securelist
Threat Landscape for Industrial Automation Systems in H2 2017
2018-03-26 10:00:27
IT threat evolution Q3 2017. Statistics
2017-11-10 10:45:04
BlackOasis APT and new targeted attacks leveraging zero-day exploit
2017-10-16 14:28:47
krebs
krebs
Adobe, Microsoft Plug Critical Security Holes
2017-09-13 16:42:30
canvas
canvas
Immunity Canvas: OFFICE_WSDL
2017-09-13 01:29:00
qualysblog
qualysblog
September Patch Tuesday: 27 Critical Vulnerabilities from Microsoft, plus Critical Adobe Patches
2017-09-12 18:23:49
Top 19+ Vulnerability CVEs in Santa’s Dashboard Tracking
2019-12-27 18:01:22
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00
ics
ics
Top 10 Routinely Exploited Vulnerabilities
2020-05-12 12:00:00

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.4 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.972 High

EPSS

Percentile

99.8%

JSON
Related for KB4040973
talosblog3trendmicroblog2openvas14mskb31checkpoint_advisories1myhack583symantec1mmpc4nessus8kaspersky1cve1cisa_kev1cert1exploitpack1mssecure2msrc1packetstorm1attackerkb1zdt1prion1mscve1exploitdb1thn3fireeye5threatpost3seebug1malwarebytes2securelist10krebs1canvas1qualysblog3ics1