Description
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, spoof user interface.
Below is a complete list of vulnerabilities:
- A denial of service vulnerability in System.IO.Pipelines can be exploited remotely via specially crafted requests to cause denial of service.
- A denial of service vulnerability in OData can be exploited remotely via specially crafted requests to cause denial of service.
- A remote code execution vulnerability in .NET Framework can be exploited remotely via specially crafted file to execute arbitrary code.
- A spoofing vulnerability in Azure IoT SDK can be exploited remotely to spoof user interface.
Original advisories
Exploitation
Public exploits exist for this vulnerability.
Related products
CVE list
- CVE-2018-8269 warning
- CVE-2018-8479 high
- CVE-2018-8409 warning
- CVE-2018-8421 critical
KB list
- 4457128
- 4457056
- 4457028
- 4457131
- 4457132
- 4457025
- 4457054
- 4457044
- 4457034
- 4457037
- 4457027
- 4457045
- 4457029
- 4457142
- 4457030
- 4457043
- 4457055
- 4457035
- 4457138
- 4457036
- 4457042
- 4457033
- 4457026
- 4457053
- 4457038
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!