Kaspersky Threats

Detect date

?

01/09/2018

Severity

?

Critical

Description

Multiple serious vulnerabilities have been found in Microsoft .NET Core, ASP.NET Core, Microsoft Excel and Microsoft Office Compatibility Pack. Malicious users can exploit these vulnerabilities to spoof user interface, obtain sensitive information, bypass security restrictions and gain privileges.

A remote code execution vulnerability can be exploited remotely via specially crafted file to execute arbitrary code;
An elevation of privilege vulnerability can be exploited remotely via specially crafted email with malicious link to gain privileges;
A Cross Site Request Forgery vulnerability can be exploited remotely via changing of recovery code for victim’s account to spoof user interface;
A security feature bypass vulnerability can be exploited remotely via using specially marked certificate to bypass security restrictions;

Technical details

Vulnerability (1) is related to Microsoft Excel and Microsoft Office Compatibility Pack. Vulnerabilities (2) and (3) are related to ASP.NET Core. Vulnerability (4) is related to .NET Core and Microsoft .NET Framework.

Affected products

Microsoft .NET Framework 4.7.1

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

CVE-2018-0784
CVE-2018-0785
CVE-2018-0786
CVE-2018-0764

Impacts

?

ACE

[?]

SB

[?]

PE

[?]

SUI

[?]

Detect date ?	01/09/2018
Severity ?	Critical
Description	Multiple serious vulnerabilities have been found in Microsoft .NET Core, ASP.NET Core, Microsoft Excel and Microsoft Office Compatibility Pack. Malicious users can exploit these vulnerabilities to spoof user interface, obtain sensitive information, bypass security restrictions and gain privileges. A remote code execution vulnerability can be exploited remotely via specially crafted file to execute arbitrary code; An elevation of privilege vulnerability can be exploited remotely via specially crafted email with malicious link to gain privileges; A Cross Site Request Forgery vulnerability can be exploited remotely via changing of recovery code for victim’s account to spoof user interface; A security feature bypass vulnerability can be exploited remotely via using specially marked certificate to bypass security restrictions; Technical details Vulnerability (1) is related to Microsoft Excel and Microsoft Office Compatibility Pack. Vulnerabilities (2) and (3) are related to ASP.NET Core. Vulnerability (4) is related to .NET Core and Microsoft .NET Framework.
Affected products	Microsoft .NET Framework 4.7.1
Solution	Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Original advisories	CVE-2018-0784 CVE-2018-0785 CVE-2018-0786 CVE-2018-0764
Impacts ?	ACE [?] SB [?] PE [?] SUI [?]
Related products	Microsoft .NET Framework Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Microsoft Excel Microsoft ASP.NET MVC
CVE-IDS ?	CVE-2018-07846.8High CVE-2018-07854.3Warning CVE-2018-07865.0Critical CVE-2018-07645.0Critical
Microsoft official advisories	Microsoft Security Update Guide
KB list	4056888 4056890 4056893 4056891 4056892 4054176 4054177 4054174 4054175 4054172 4054995 4054170 4054171 4054998 4054999 4054181 4054997 4054996 4054993 4055001 4055000 4055002 4054994 4054182 4054183 4074880
	Find out the statistics of the vulnerabilities spreading in your region

KLA11172Multiple vulnerabilities in Microsoft Development Tools

KLA11172
Multiple vulnerabilities in Microsoft Development Tools