KLA10695 Multiple vulnerabilities in Microsoft .NET Framework

Multiple serious vulnerabilities have been found in Microsoft .NET Framework. Malicious users can exploit these vulnerabilities to bypass security restrictions,.

Below is a complete list of vulnerabilities

1. Erroneous XML parsing at Document Type Definition can be exploited remotely via a specially designed XML file to obtain sensitive information;
2. Improper HTTP requests validation at ASP.NET can be exploited remotely via a specially designed web content to inject arbitrary script;
3. Improper Address Space Layout Randomization implementation can be exploited remotely via a specially designed web site to bypass security restrictions.

Technical details

By exploiting (1) attacker can gain read access to local files.

Original advisories

CVE-2015-6099

CVE-2015-6096

CVE-2015-6115

Related products

Microsoft-.NET-Framework

CVE list

CVE-2015-6099 warning

CVE-2015-6096 warning

CVE-2015-6115 warning

KB list

3097999

3098784

3104507

3098780

3098779

3098785

3097995

3097997

3098000

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Impacts

• OSI

Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.

• CI

Code injection. Exploitation of vulnerabilities with this impact can lead to changes in target code.

• SB

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

Affected Products

• Microsoft .NET Framework versions 2.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, 4.5.2, 4.6