Multiple vulnerabilities in Microsoft Developer tools

Beschreibung

Multiple vulnerabilities were found in Microsoft Developer tools. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, spoof user interface, gain privileges.

Below is a complete list of vulnerabilities:

1. An information disclosure vulnerability in Azure IoT Java SDK can be exploited remotely to obtain sensitive information.
2. A remote code execution vulnerability in .NET Framework and Visual Studio can be exploited remotely via specially crafted file to execute arbitrary code.
3. A remote code execution vulnerability in Visual Studio Code can be exploited remotely to execute arbitrary code.
4. Multiple memory corruption vulnerabilities in Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code.
5. A spoofing vulnerability in .NET Framework and Visual Studio can be exploited remotely to spoof user interface.
6. An elevation of privilege vulnerability in Azure IoT Java SDK can be exploited remotely to gain privileges.
7. A memory corruption vulnerability in Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code.
8. An information disclosure vulnerability in Scripting Engine can be exploited remotely via specially crafted content to obtain sensitive information.

Ursprüngliche Informationshinweise

• CVE-2019-0741

• CVE-2019-0607
• CVE-2019-0644
• CVE-2019-0743
• CVE-2019-0613
• CVE-2019-0742
• CVE-2019-0593
• CVE-2019-0642
• CVE-2019-0728
• CVE-2019-0590
• CVE-2019-0651
• CVE-2019-0657
• CVE-2019-0729
• CVE-2019-0652
• CVE-2019-0655
• CVE-2019-0640
• CVE-2019-0605
• CVE-2019-0658
• CVE-2019-0610
• CVE-2019-0649
• CVE-2019-0591
• CVE-2019-0631
• CVE-2019-0632
• CVE-2019-0627

CVE Liste

• CVE-2019-0627
  critical
• CVE-2019-0631
  critical
• CVE-2019-0632
  critical
• CVE-2019-0741
  critical
• CVE-2019-0607
  critical
• CVE-2019-0644
  critical
• CVE-2019-0743
  critical
• CVE-2019-0613
  critical
• CVE-2019-0742
  critical
• CVE-2019-0593
  critical
• CVE-2019-0642
  critical
• CVE-2019-0728
  critical
• CVE-2019-0590
  critical
• CVE-2019-0651
  critical
• CVE-2019-0657
  critical
• CVE-2019-0729
  critical
• CVE-2019-0652
  critical
• CVE-2019-0655
  critical
• CVE-2019-0640
  critical
• CVE-2019-0605
  critical
• CVE-2019-0658
  critical
• CVE-2019-0610
  critical
• CVE-2019-0649
  critical
• CVE-2019-0591
  critical

KB Liste

• 4487020
• 4487017
• 4486996
• 4487026
• 4487018
• 4483452
• 4483449
• 4483455
• 4483469
• 4483484
• 4483482
• 4483468
• 4483470
• 4483483
• 4483474
• 4483473
• 4483451
• 4483453
• 4483457
• 4483472
• 4483458
• 4483459
• 4483454
• 4483456
• 4483481
• 4483450

Mehr erfahren

Informieren Sie sich über die Statistiken der in Ihrer Region verbreiteten Sicherheitslücken statistics.securelist.com