6554 matches found
Microsoft .NET Denial of Service Vulnerability
Microsoft .NET Framework is a software framework developed by Microsoft. NET Framework Microsoft Common Object Runtime Library does not properly handle web requests, allowing attackers to exploit the vulnerability by submitting a special request and crashing the application...
CVE-2017-8585
Microsoft .NET Framework 4.6, 4.6.1, 4.6.2, and 4.7 allow an attacker to send specially crafted requests to a .NET web application, resulting in denial of service, aka .NET Denial of Service Vulnerability...
Denial of service
Microsoft .NET Framework 4.6, 4.6.1, 4.6.2, and 4.7 allow an attacker to send specially crafted requests to a .NET web application, resulting in denial of service, aka .NET Denial of Service Vulnerability...
CVE-2017-8585
CVE-2017-8585 is a denial-of-service issue in Microsoft .NET Framework (affected versions include 4.6, 4.6.1, 4.6.2, 4.7) caused by improper handling of incoming requests to a .NET web application. The vulnerability could allow a remote attacker to cause a DoS condition by sending specially craft...
CVE-2017-8585
Microsoft .NET Framework 4.6, 4.6.1, 4.6.2, and 4.7 allow an attacker to send specially crafted requests to a .NET web application, resulting in denial of service, aka .NET Denial of Service Vulnerability...
Microsoft Patch Tuesday - July 2017
Today, Microsoft has release their monthly set of security updates designed to address vulnerabilities. This month's release addresses 54 vulnerabilities with 19 of them rated critical, 32 rated important, and 3 rated moderate. Impacted products include Edge, .NET Framework, Internet Explorer,...
KLA11068 Denial of Service Vulnerability in Microsoft .NET Framework
An improper handling of web requests has been found in Microsoft Common Object Runtime Library. By exploiting this vulnerability malicious users can cause a denial of service. This vulnerability can be exploited by issuing specially designed requests to the .NET web application. Original advisori...
Microsoft Exchange Server CVE-2017-8621 Open Redirection Vulnerability
Description Microsoft .NET Framework is prone to an open-redirection vulnerability because it fails to properly sanitize user-supplied input. An attacker can leverage this issue by constructing a crafted URI and enticing a user to follow it. When an unsuspecting victim follows the link, they may ...
Microsoft .NET Framework 4.7 DLL Hijacking
Hi @ll, the executable installers for .NET Framework 4.7 released about 2 months ago NDP47-KB3186500-Web.exe, Microsoft .NET Framework 4.7 Web Installer for Windows 7 SP1 etc., available from , NDP47-KB3186497-x86-x64-AllOS-ENU.exe, Microsoft .NET Framework 4.7 Offline Installer for Windows 7 SP1...
May 2017 Preview of the Quality Rollups for the .NET Framework 2.0 Service Pack 2, 4.5.2, and 4.6 for Windows Server 2008 Service Pack 2 (KB4019291): May 16, 2017
May 2017 Preview of the Quality Rollups for the .NET Framework 2.0 Service Pack 2, 4.5.2, and 4.6 for Windows Server 2008 Service Pack 2 KB4019291: May 16, 2017 Notice This release has been removed from Windows Update because of the issues that are described in the following .NET Blog article: .N...
May 2017 Preview of the Quality Rollup for the .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, and 4.6.2 for Windows Server 2012 (KB4019289): May 16, 2017
May 2017 Preview of the Quality Rollup for the .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, and 4.6.2 for Windows Server 2012 KB4019289: May 16, 2017 Notice This release has been removed from Windows Update because of the issues that are described in the following .NET Blog article: .NET Framework May...
May 2017 Preview of the Quality Rollups for the .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, and 4.6.2 for Windows 7 and Windows Server 2008 R2 (KB4019288): May 16, 2017
May 2017 Preview of the Quality Rollups for the .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, and 4.6.2 for Windows 7 and Windows Server 2008 R2 KB4019288: May 16, 2017 Notice This release has been removed from Windows Update because of the issues that are described in the following .NET Blog article:...
MS16-035: Description of the security update for the .NET Framework 4.6 in Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, and Windows Server 2008 R2 SP1 and 4.6.1 in Windows 7 SP1 and Windows Server 2008 R2 SP1: March 8, 2016
MS16-035: Description of the security update for the .NET Framework 4.6 in Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, and Windows Server 2008 R2 SP1 and 4.6.1 in Windows 7 SP1 and Windows Server 2008 R2 SP1: March 8, 2016 November 8, 2016 A detection change was made to account for...
MS15-101: Description of the security update for the .NET Framework 4.5, 4.5.1, and 4.5.2 on Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1, Windows Vista Service Pack 2, and Windows Server 2008 Service Pack 2: September 8, 2015
MS15-101: Description of the security update for the .NET Framework 4.5, 4.5.1, and 4.5.2 on Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1, Windows Vista Service Pack 2, and Windows Server 2008 Service Pack 2: September 8, 2015 View products that this article applies to. Summary...
MS15-048: Description of the security update for the .NET Framework 4.5, 4.5.1, and 4.5.2 on Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1, Windows Vista Service Pack 2, and Windows Server 2008 Service Pack 2: May 12, 2015
MS15-048: Description of the security update for the .NET Framework 4.5, 4.5.1, and 4.5.2 on Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1, Windows Vista Service Pack 2, and Windows Server 2008 Service Pack 2: May 12, 2015 View products that this article applies to. Introduction...
May 9, 2017—KB4016871 (OS Build 15063.296 and 15063.297)
May 9, 2017—KB4016871 OS Build 15063.296 and 15063.297 Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed issue with Surface Hub devices waking from sleep approximately eve...
CVE-2017-0248
Microsoft .NET Framework 2.0, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 and 4.7 allow an attacker to bypass Enhanced Security Usage taggings when they present a certificate that is invalid for a specific use, aka ".NET Security Feature Bypass Vulnerability."...
CVE-2017-0248
Microsoft .NET Framework 2.0, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 and 4.7 allow an attacker to bypass Enhanced Security Usage taggings when they present a certificate that is invalid for a specific use, aka ".NET Security Feature Bypass Vulnerability."...
Security feature bypass
Microsoft .NET Framework 2.0, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 and 4.7 allow an attacker to bypass Enhanced Security Usage taggings when they present a certificate that is invalid for a specific use, aka ".NET Security Feature Bypass Vulnerability."...
CVE-2017-0248
CVE-2017-0248 affects Microsoft .NET Framework versions 2.0, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 and 4.7. The vulnerability allows bypass of Enhanced Security Usage tagging when a certificate is presented that is invalid for a specific use, i.e., a .NET Security Feature Bypass. The root cause is...