Дата обнаружения
|
11/04/2017 |
Уровень угрозы
|
Critical |
Описание
|
An improper input validation on library load was found in Microsoft .NET. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited locally via a specially designed application. Technical details To exploit this vulnerability, a malicious user needs to have an access to the local system with the ability to execute malicious applications. |
Пораженные продукты
|
Microsoft .NET Framework 2.0 Service Pack 2 |
Решение
|
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel) |
Первичный источник обнаружения
|
CVE-2017-0160 CVE-2017-0160 |
Оказываемое влияние
?
|
ACE
[?]
|
Связанные продукты
|
Microsoft .NET Framework |
CVE-IDS
|
|
Microsoft official advisories
|
Microsoft Security Update Guide |
KB list
|
4015221 |
Эксплуатация
|
The following public exploits exists for this vulnerability: https://www.exploit-db.com/exploits/41903 Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. |