Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA11419
HistoryFeb 12, 2019 - 12:00 a.m.

KLA11419 Multiple vulnerabilities in Microsoft Developer Tools

2019-02-1200:00:00
Kaspersky Lab
threats.kaspersky.com
87

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.1 High

AI Score

Confidence

High

0.058 Low

EPSS

Percentile

93.4%

JSON

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, spoof user interface, obtain sensitive information, gain privileges.

Below is a complete list of vulnerabilities:

  1. A security feature bypass vulnerability in Windows can be exploited remotely to bypass security restrictions.
  2. A remote code execution vulnerability in .NET Framework and Visual Studio can be exploited remotely via specially crafted file to execute arbitrary code.
  3. A spoofing vulnerability in .NET Framework and Visual Studio can be exploited remotely to spoof user interface.
  4. A cross-site-scripting (XSS) vulnerability Team Foundation Server can be exploited remotely via specially crafted payload to spoof user interface.
  5. An information disclosure vulnerability in Azure IoT Java SDK can be exploited remotely to obtain sensitive information.
  6. An elevation of privilege vulnerability in Azure IoT Java SDK can be exploited remotely to gain privileges.
  7. A remote code execution vulnerability in Visual Studio Code can be exploited remotely to execute arbitrary code.

Original advisories

CVE-2019-0631

CVE-2019-0613

CVE-2019-0657

CVE-2019-0742

CVE-2019-0632

CVE-2019-0741

CVE-2019-0627

CVE-2019-0729

CVE-2019-0728

CVE-2019-0743

Related products

Microsoft-.NET-Framework

Microsoft-Visual-Studio

Microsoft-Windows

Microsoft-Windows-Server

Microsoft-Windows-10

Team-Foundation-Server

Microsoft-Azure

CVE list

CVE-2019-0627 warning

CVE-2019-0631 warning

CVE-2019-0632 warning

CVE-2019-0741 warning

CVE-2019-0743 warning

CVE-2019-0613 critical

CVE-2019-0742 warning

CVE-2019-0728 critical

CVE-2019-0657 warning

CVE-2019-0729 critical

KB list

4487020

4487017

4486996

4487026

4487018

4483452

4483450

4487081

4487079

4487078

4487124

4487121

4487123

4487122

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Impacts

  • ACE

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

  • OSI

Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.

  • SB

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

  • PE

Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.

  • SUI

Spoof user interface. Exploitation of vulnerabilities with this impact can lead to changes in user interface to beguile user into inaccurate behavior.

Affected Products

  • .NET Core 1.0.NET Core 2.1.NET Core 2.2Java SDK for Azure IoTMicrosoft .NET Framework 2.0 Service Pack 2Microsoft .NET Framework 3.0 Service Pack 2Microsoft .NET Framework 3.5Microsoft .NET Framework 3.5.1Microsoft .NET Framework 4.5.2Microsoft .NET Framework 4.6Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2Microsoft .NET Framework 4.6/4.6.1/4.6.2Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2Microsoft .NET Framework 4.7.1/4.7.2Microsoft .NET Framework 4.7.2Microsoft .NET Framework 4.7/4.7.1/4.7.2Microsoft Visual Studio 2017Team Foundation Server 2018 Update 3.2Visual Studio CodeWindows 10 for 32-bit SystemsWindows Server, version 1803 (Server Core Installation)PowerShell Core 6.2Windows 10 for x64-based SystemsWindows Server 2016 (Server Core installation)Windows 10 Version 1803 for ARM64-based SystemsWindows Server 2016Windows 10 Version 1709 for x64-based SystemsWindows 10 Version 1709 for ARM64-based SystemsWindows 10 Version 1703 for x64-based SystemsWindows 10 Version 1809 for 32-bit SystemsWindows 10 Version 1809 for ARM64-based SystemsWindows Server 2019 (Server Core installation)PowerShell Core 6.1Microsoft Visual Studio 2017 version 15.9 (includes 15.1 - 15.8)Windows 10 Version 1803 for x64-based SystemsWindows 10 Version 1607 for 32-bit SystemsWindows Server, version 1709 (Server Core Installation)Windows 10 Version 1809 for x64-based SystemsWindows 10 Version 1607 for x64-based SystemsWindows 10 Version 1803 for 32-bit SystemsWindows 10 Version 1709 for 32-bit SystemsWindows 10 Version 1703 for 32-bit SystemsWindows Server 2019

References

Related

prion 10
nvd 10
osv 5
cvelist 10
cve 10
openvas 18
mskb 16
nessus 16
veracode 5
altlinux 7
symantec 10
mscve 10
redhat 1
cve0day 1
redhatcve 1
github 1
talosblog 1
kaspersky 1
prion
prion
Security feature bypass
2019-03-05 23:29:00
Security feature bypass
2019-03-05 23:29:00
Security feature bypass
2019-03-05 23:29:00
nvd
nvd
CVE-2019-0631
2019-03-05 23:29:01
CVE-2019-0627
2019-03-05 23:29:01
CVE-2019-0632
2019-03-05 23:29:01
osv
osv
CVE-2019-0627
2019-03-05 23:29:01
CVE-2019-0632
2019-03-05 23:29:01
CVE-2019-0631
2019-03-05 23:29:01
cvelist
cvelist
CVE-2019-0627
2019-03-06 00:00:00
CVE-2019-0632
2019-03-06 00:00:00
CVE-2019-0631
2019-03-06 00:00:00
cve
cve
CVE-2019-0632
2019-03-06 00:00:00
CVE-2019-0627
2019-03-06 00:00:00
CVE-2019-0631
2019-03-06 00:00:00
openvas
openvas
Microsoft Visual Studio Multiple Vulnerabilities (Feb 2019)
2019-02-27 00:00:00
Microsoft .NET Framework Multiple Vulnerabilities (KB4483451)
2019-02-13 00:00:00
Microsoft .NET Framework Multiple Vulnerabilities (KB4483459)
2019-02-13 00:00:00
mskb
mskb
February 12, 2019—KB4483452 Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows 10, version 1809 and Windows Server 2019
2019-02-12 08:00:00
Description of the Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, and 4.7.2 for Windows 8.1, RT 8.1, and Server 2012 R2 (KB 4483450)
2019-02-12 08:00:00
Security and Quality Rollup updates for .NET Framework 2.0 SP2, 3.0 SP2, 4.5.2, and 4.6 for Windows Server 2008 SP2 (KB 4487081)
2019-02-12 08:00:00
nessus
nessus
Security Updates for Microsoft Visual Studio Products (February 2019)
2019-02-12 00:00:00
Security Updates for Microsoft Team Foundation Server (February 2019)
2019-02-14 00:00:00
Security Updates for Microsoft .NET Framework (February 2019)
2019-02-15 00:00:00
veracode
veracode
Authorization Bypass
2019-07-08 13:27:48
Authorization Bypass
2019-07-08 13:27:48
Information Disclosure
2019-03-06 04:37:42
altlinux
altlinux
Security fix for the ALT Linux 8 package dotnet-bootstrap version 2.1.9-alt1
2019-05-16 00:00:00
Security fix for the ALT Linux 10 package dotnet-bootstrap-5.0 version 2.1.9-alt1
2019-03-13 00:00:00
Security fix for the ALT Linux 10 package dotnet-bootstrap-3.1 version 2.1.9-alt1
2019-03-13 00:00:00
symantec
symantec
Microsoft Windows Device Guard CVE-2019-0632 Local Security Bypass Vulnerability
2019-02-12 00:00:00
Microsoft .NET Framework and Visual Studio CVE-2019-0613 Remote Code Execution Vulnerability
2019-02-12 00:00:00
Microsoft Windows Device Guard CVE-2019-0627 Local Security Bypass Vulnerability
2019-02-12 00:00:00
mscve
mscve
Windows Security Feature Bypass Vulnerability
2019-02-12 08:00:00
Windows Security Feature Bypass Vulnerability
2019-02-12 08:00:00
Windows Security Feature Bypass Vulnerability
2019-02-12 08:00:00
redhat
redhat
(RHSA-2019:0349) Moderate: .NET Core on Red Hat Enterprise Linux security update for February 2019
2019-02-14 04:23:45
cve0day
cve0day
Visual Studio CVE-2019-0728 Remote Code Execution
2019-03-06 13:48:57
redhatcve
redhatcve
CVE-2019-0657
2019-02-13 13:19:35
github
github
Improper Input Validation in .Net Framework API's
2022-05-14 01:28:01
talosblog
talosblog
Microsoft Patch Tuesday — February 2019: Vulnerability disclosures and Snort coverage
2019-02-12 11:55:00
kaspersky
kaspersky
KLA11418 Multiple vulnerabilities in Microsoft Windows
2019-02-12 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.1 High

AI Score

Confidence

High

0.058 Low

EPSS

Percentile

93.4%

JSON
Related for KLA11419
prion10nvd10osv5cvelist10cve10openvas18mskb16nessus16veracode5altlinux7symantec10mscve10redhat1cve0day1redhatcve1github1talosblog1kaspersky1