16 matches found
SUSE CVE-2020-1597
unknown...
CentOS 8 : .NET Core 3.1 (CESA-2020:3422)
The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2020:3422 advisory. - dotnet: ASP.NET Core Resource Consumption Denial of Service CVE-2020-1597 Note that Nessus has not tested for this issue but has instead relied only on the...
Security fix for the ALT Linux 9 package dotnet-bootstrap-3.1 version 3.1.11-alt1
Jan. 28, 2021 Vitaly Lipatov 3.1.11-alt1 - new version 3.1.11 with rpmgs script - .NET Core 3.1.11 - January 12, 2021 - CVE-2021-1723: ASP.NET Core Denial of Service Vulnerability - CVE-2020-1045: Microsoft ASP.NET Core Security Feature Bypass Vulnerability - CVE-2020-1597: NET Core Remote Code...
Security fix for the ALT Linux 10 package dotnet-bootstrap-3.1 version 3.1.11-alt1
Jan. 28, 2021 Vitaly Lipatov 3.1.11-alt1 - new version 3.1.11 with rpmgs script - .NET Core 3.1.11 - January 12, 2021 - CVE-2021-1723: ASP.NET Core Denial of Service Vulnerability - CVE-2020-1045: Microsoft ASP.NET Core Security Feature Bypass Vulnerability - CVE-2020-1597: NET Core Remote Code...
Fedora: Security Advisory for dotnet3.1 (FEDORA-2020-9ddf1aa50b)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora 32 : dotnet-build-reference-packages / dotnet3.1 (2020-cad5d17c6d)
Update to .NET Core SDK 3.1.107 and Runtime 3.1.7. This fixes CVE-2020-1597 - Release Notes: https://github.com/dotnet/core/blob/master/release-notes /3.1/3.1.7/3.1.7.md Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website...
Fedora: Security Advisory for dotnet-build-reference-packages (FEDORA-2020-cad5d17c6d)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2020-1597
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests. An attacker who successfully exploited this vulnerability could cause a denial of service against an ASP.NET Core web application. The vulnerability can be exploited remotely, without authentication. A...
CVE-2020-1597 ASP.NET Core Denial of Service Vulnerability
...
CVE-2020-1597
CVE-2020-1597 is a denial-of-service vulnerability in ASP.NET Core where remote, unauthenticated attackers can cause resource exhaustion by sending specially crafted web requests. The flaw stems from how ASP.NET Core handles incoming requests and is fixed by an update that corrects request handli...
Oracle Linux 8 : .NET / Core / 3.1 (ELSA-2020-3422)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-3422 advisory. 3.1.107-1.0.1 - Update patch to support 8.2 [email protected] - support OL release scheme [email protected] 3.1.107-1 - Update to .NET...
Important: Red Hat Security Advisory: .NET Core 3.1 security and bugfix update
An update for .NET Core 3.1 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...
KLA11934 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in ASP.NET Core can be exploit...
Security Updates for Microsoft Visual Studio Products (August 2020)
The Microsoft Visual Studio Products are missing security updates. It is, therefore, affected by a denial-of-service vulnerability: - A denial of service vulnerability exists when ASP.NET Core improperly handles web requests. An attacker who successfully exploited this vulnerability could cause a...
RHEL 7 : .NET Core 3.1 security and bugfix update for Red Hat Enterprise Linux (Important) (RHSA-2020:3421)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3421 advisory. .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR...
RHEL 8 : .NET Core 3.1 (RHSA-2020:3422)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3422 advisory. .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR...