English
Russian
Japanese
LatAm
Türkiye
Brasil
France
Český
Deutschland
KLA11078
ACE vulnerability in Microsoft .NET Framework
|
Дата обнаружения
|
11/04/2017 |
|
Уровень угрозы
|
Critical |
|
Описание
|
An improper input validation on library load was found in Microsoft .NET. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited locally via a specially designed application. Technical details To exploit this vulnerability, a malicious user needs to have an access to the local system with the ability to execute malicious applications. |
|
Пораженные продукты
|
Microsoft .NET Framework 2.0 Service Pack 2 |
|
Решение
|
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel) |
|
Первичный источник обнаружения
|
CVE-2017-0160 CVE-2017-0160 |
|
Оказываемое влияние
?
|
ACE
[?]
|
|
Связанные продукты
|
Microsoft .NET Framework |
|
CVE-IDS
|
|
|
Microsoft official advisories
|
Microsoft Security Update Guide |
|
KB list
|
4015221 |
|
Эксплуатация
|
The following public exploits exists for this vulnerability: https://www.exploit-db.com/exploits/41903 Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. |