ID de Prueba:	1.3.6.1.4.1.25623.1.0.815510
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft .NET Framework Multiple Vulnerabilities (KB4507423)
Resumen:	This host is missing a critical security; update according to Microsoft KB4507423
Descripción:	Summary: This host is missing a critical security update according to Microsoft KB4507423 Vulnerability Insight: Multiple flaws exist due to: - An error in Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF), allowing signing of SAML tokens with arbitrary symmetric keys. - An error when Microsoft Common Object Runtime Library improperly handles web requests. - Because the .NET Framework fails to check the source markup of a file. Vulnerability Impact: Successful exploitation will allow an attacker to gain elevated privileges, conduct denial-of-service condition and execute arbitrary code. Affected Software/OS: Microsoft .NET Framework 2.0, 3.0, 4.5.2 and 4.6 for Microsoft Windows Server 2008 SP2. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2019-1113 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1113 Common Vulnerability Exposure (CVE) ID: CVE-2019-1006 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1006 Common Vulnerability Exposure (CVE) ID: CVE-2019-1083 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1083
Copyright	Copyright (C) 2019 Greenbone Networks GmbH

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.