Описание
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, gain privileges.
Below is a complete list of vulnerabilities:
- A denial of service vulnerability in ASP.NET Core can be exploited remotely via specially crafted requests to cause denial of service.
- A remote code execution vulnerability in .NET Framework can be exploited remotely via specially crafted file to execute arbitrary code.
- A remote code execution vulnerability in Visual Studio Code can be exploited remotely to execute arbitrary code.
- An elevation of privilege vulnerability in ASP.NET and .NET can be exploited remotely via specially crafted request to gain privileges.
Первичный источник обнаружения
Связанные продукты
Список CVE
- CVE-2020-1597 critical
- CVE-2020-1046 critical
- CVE-2020-0604 critical
- CVE-2020-1476 high
Список KB
- 4571692
- 4571694
- 4571709
- 4571741
- 4569751
- 4569748
- 4569749
- 4569746
- 4569745
- 4570506
- 4570507
- 4570502
- 4570500
- 4570501
- 4570505
- 4570509
- 4570508
- 4570503
Смотрите также
Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com
Нашли неточность в описании этой уязвимости? Дайте нам знать!