Test ID:	1.3.6.1.4.1.25623.1.0.812703
Category:	Windows : Microsoft Bulletins
Title:	Microsoft .NET Framework DoS And Security Feature Bypass Vulnerability (KB4055000)
Summary:	This host is missing a critical security; update according to Microsoft Security Updates KB4055000.
Description:	Summary: This host is missing a critical security update according to Microsoft Security Updates KB4055000. Vulnerability Insight: Multiple flaws are due to: - .NET Framework (and .NET Core) components do not completely validate certificates. - .NET, and .NET core, improperly process XML documents. Vulnerability Impact: Successful exploitation will allow remote attackers to cause a denial of service against a .NET application and also to bypass certain security restrictions. Affected Software/OS: - Microsoft .NET Framework 4.6 - Microsoft .NET Framework 4.6.1 - Microsoft .NET Framework 4.6.2 - Microsoft .NET Framework 4.7 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2018-0764 BugTraq ID: 102387 http://www.securityfocus.com/bid/102387 RedHat Security Advisories: RHSA-2018:0379 https://access.redhat.com/errata/RHSA-2018:0379 http://www.securitytracker.com/id/1040152 Common Vulnerability Exposure (CVE) ID: CVE-2018-0786 BugTraq ID: 102380 http://www.securityfocus.com/bid/102380
Copyright	Copyright (C) 2018 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.