Дата обнаружения
|
09/01/2018 |
Уровень угрозы
|
Critical |
Описание
|
Multiple serious vulnerabilities have been found in Microsoft .NET Core, ASP.NET Core, Microsoft Excel and Microsoft Office Compatibility Pack. Malicious users can exploit these vulnerabilities to spoof user interface, obtain sensitive information, bypass security restrictions and gain privileges.
Technical details Vulnerability (1) is related to Microsoft Excel and Microsoft Office Compatibility Pack. Vulnerabilities (2) and (3) are related to ASP.NET Core. Vulnerability (4) is related to .NET Core and Microsoft .NET Framework. |
Пораженные продукты
|
Microsoft .NET Framework 4.7.1 |
Решение
|
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel) |
Первичный источник обнаружения
|
CVE-2018-0784 CVE-2018-0785 CVE-2018-0786 CVE-2018-0764 |
Оказываемое влияние
?
|
ACE
[?]
SB
[?]
PE
[?]
SUI
[?]
|
Связанные продукты
|
Microsoft .NET Framework Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Microsoft Excel Microsoft ASP.NET MVC |
CVE-IDS
|