CVE-2017-8759
Description
Microsoft .NET Framework 2.0, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 and 4.7 allow an attacker to execute code remotely via a malicious document or application, aka .NET Framework Remote Code Execution Vulnerability.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
93.953
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Internet Explorer Spoofing Vulnerability for Windows 10 Version 1511 for x64-based Systems (KB4038783) - Cumulative | Windows |
| Internet Explorer Spoofing Vulnerability for Windows 10 Version 1511 for x86-based Systems (KB4038783) - Cumulative | Windows |
| NetBIOS Remote Code Execution Vulnerability for Windows Server 2016 for x64-based Systems (KB4038782) - Cumulative | Windows |
| NetBIOS Remote Code Execution Vulnerability for Windows Server 2016 for x64-based Systems (KB4038782) - Delta | Windows |
| NetBIOS Remote Code Execution Vulnerability for Windows 10 Version 1607 for x64-based Systems (KB4038782) - Cumulative | Windows |
| NetBIOS Remote Code Execution Vulnerability for Windows 10 Version 1607 for x64-based Systems (KB4038782) - Delta | Windows |
| NetBIOS Remote Code Execution Vulnerability for Windows 10 Version 1607 for x86-based Systems (KB4038782) - Cumulative | Windows |
| NetBIOS Remote Code Execution Vulnerability for Windows 10 Version 1607 for x86-based Systems (KB4038782) - Delta | Windows |
| Internet Explorer Spoofing Vulnerability for Windows 10 Version 1507 for x64-based Systems (KB4038781) - Cumulative | Windows |
| Internet Explorer Spoofing Vulnerability for Windows 10 Version 1703 for x64-based Systems (KB4038788) - Cumulative | Windows |
| Internet Explorer Spoofing Vulnerability for Windows 10 Version 1703 for x64-based Systems (KB4038788) - Delta | Windows |
| Internet Explorer Spoofing Vulnerability for Windows 10 Version 1703 for x86-based Systems (KB4038788) - Cumulative | Windows |
| Internet Explorer Spoofing Vulnerability for Windows 10 Version 1703 for x86-based Systems (KB4038788) - Delta | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows 7 and Server 2008 R2 for x64 (KB4040957) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows 7 (KB4040957) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 2.0, 3.0, 4.5.2, 4.6 on Windows Server 2008 SP2 for x64 (KB4040957) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.6 on Windows Server 2008 SP2 (KB4040957) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows 7 and Server 2008 R2 for x64 (KB4040973) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows 7 (KB4040973) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.6 on Windows Server 2008 SP2 for x64 (KB4040973) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.6 on Windows Server 2008 SP2 (KB4040973) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows 8.1 and Server 2012 R2 for x64 (KB4040956) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows 8.1 (KB4040956) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows 8.1 and Server 2012 R2 for x64 (KB4040972) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows 8.1 (KB4040972) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows Server 2012 for x64 (KB4040955) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows Server 2012 for x64 (KB4040971) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 3.5 on Windows 8.1 and Server 2012 R2 for x64 (KB4040967) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 3.5 on Windows 8.1 (KB4040967) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 3.5 on Windows 8.1 and Server 2012 R2 for x64 (KB4040981) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 3.5 on Windows 8.1 (KB4040981) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 3.5 on Windows Server 2012 for x64 (KB4040965) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 3.5 on Windows Server 2012 for x64 (KB4040979) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.5.2 on Windows 7 and Server 2008 R2 for x64 (KB4040960) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.5.2 on Windows 7 (KB4040960) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.5.2 on Windows Server 2008 SP2 for x64 (KB4040960) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.5.2 on Windows Server 2008 SP2 (KB4040960) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.5.2 on Windows 7 and Server 2008 R2 for x64 (KB4040977) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.5.2 on Windows 7 (KB4040977) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.5.2 on Windows Server 2008 SP2 for x64 (KB4040977) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.5.2 on Windows Server 2008 SP2 (KB4040977) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.5.2 on Windows 8.1 and Server 2012 R2 for x64 (KB4040958) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.5.2 on Windows 8.1 (KB4040958) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.5.2 on Windows 8.1 and Server 2012 R2 for x64 (KB4040974) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.5.2 on Windows 8.1 (KB4040974) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.5.2 on Windows Server 2012 for x64 (KB4040959) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 4.5.2 on Windows Server 2012 for x64 (KB4040975) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 2.0 on Windows Server 2008 SP2 for x64 (KB4040964) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 2.0 on Windows Server 2008 SP2 (KB4040964) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 2.0 on Windows Server 2008 SP2 for x64 (KB4040978) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 2.0 on Windows Server 2008 SP2 (KB4040978) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 3.5.1 on Windows 7 and Server 2008 R2 for x64 (KB4040966) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 3.5.1 on Windows 7 (KB4040966) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 3.5.1 on Windows 7 and Server 2008 R2 for x64 (KB4040980) | Windows |
| .NET Framework Remote Code Execution Vulnerability for .NET Framework 3.5.1 on Windows 7 (KB4040980) | Windows |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-23008 | Cumulative Update for Windows 10 Version 1511 for x64-based Systems (KB4038783) |
| PATCH-23007 | Cumulative Update for Windows 10 Version 1511 for x86-based Systems (KB4038783) |
| PATCH-23011 | Cumulative Update for Windows Server 2016 for x64-based Systems (KB4038782) |
| PATCH-23014 | Delta Update for Windows Server 2016 for x64-based Systems (KB4038782) |
| PATCH-23010 | Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB4038782) |
| PATCH-23013 | Delta Update for Windows 10 Version 1607 for x64-based Systems (KB4038782) |
| PATCH-23009 | Cumulative Update for Windows 10 Version 1607 for x86-based Systems (KB4038782) |
| PATCH-23012 | Delta Update for Windows 10 Version 1607 for x86-based Systems (KB4038782) |
| PATCH-23006 | Cumulative Update for Windows 10 Version 1507 for x64-based Systems (KB4038781) |
| PATCH-23068 | KB4041090, 2017-09 Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows 7 and Server 2008 R2 for x64 (KB4040957) |
| PATCH-23067 | KB4041090, 2017-09 Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows 7 (KB4040957) |
| PATCH-23056 | KB4041090, 2017-09 Security Only Update for .NET Framework 2.0, 3.0, 4.5.2, 4.6 on Windows Server 2008 SP2 for x64 (KB4040957) |
| PATCH-23055 | KB4041090, 2017-09 Security Only Update for .NET Framework 4.6 on Windows Server 2008 SP2 (KB4040957) |
| PATCH-23062 | KB4041083, 2017-09 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows 7 and Server 2008 R2 for x64 (KB4040973) |
| PATCH-23050 | KB4041083, 2017-09 Security and Quality Rollup for .NET Framework 4.6 on Windows Server 2008 SP2 for x64 (KB4040973) |
| PATCH-23049 | KB4041083, 2017-09 Security and Quality Rollup for .NET Framework 4.6 on Windows Server 2008 SP2 (KB4040973) |
| PATCH-23080 | KB4041092, 2017-09 Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows 8.1 and Server 2012 R2 for x64 (KB4040956) |
| PATCH-23079 | KB4041092, 2017-09 Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows 8.1 (KB4040956) |
| PATCH-23074 | KB4041085, 2017-09 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows 8.1 and Server 2012 R2 for x64 (KB4040972) |
| PATCH-23073 | KB4041085, 2017-09 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows 8.1 (KB4040972) |
| PATCH-23132 | KB4041091, 2017-09 Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows Server 2012 for x64 (KB4040955) |
| PATCH-23129 | KB4041084, 2017-09 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows Server 2012 for x64 (KB4040971) |
| PATCH-23076 | KB4041092, 2017-09 Security Only Update for .NET Framework 3.5 on Windows 8.1 and Server 2012 R2 for x64 (KB4040967) |
| PATCH-23075 | KB4041092, 2017-09 Security Only Update for .NET Framework 3.5 on Windows 8.1 (KB4040967) |
| PATCH-23070 | KB4041085, 2017-09 Security and Quality Rollup for .NET Framework 3.5 on Windows 8.1 and Server 2012 R2 for x64 (KB4040981) |
| PATCH-23130 | KB4041091, 2017-09 Security Only Update for .NET Framework 3.5 on Windows Server 2012 for x64 (KB4040965) |
| PATCH-23081 | KB4041084, 2017-09 Security and Quality Rollup for .NET Framework 3.5 on Windows Server 2012 for x64 (KB4040979) |
| PATCH-23066 | KB4041090, 2017-09 Security Only Update for .NET Framework 4.5.2 on Windows 7 and Server 2008 R2 for x64 (KB4040960) |
| PATCH-23065 | KB4041090, 2017-09 Security Only Update for .NET Framework 4.5.2 on Windows 7 (KB4040960) |
| PATCH-23054 | KB4041090, 2017-09 Security Only Update for .NET Framework 4.5.2 on Windows Server 2008 SP2 for x64 (KB4040960) |
| PATCH-23053 | KB4041090, 2017-09 Security Only Update for .NET Framework 4.5.2 on Windows Server 2008 SP2 (KB4040960) |
| PATCH-23078 | KB4041092, 2017-09 Security Only Update for .NET Framework 4.5.2 on Windows 8.1 and Server 2012 R2 for x64 (KB4040958) |
| PATCH-23077 | KB4041092, 2017-09 Security Only Update for .NET Framework 4.5.2 on Windows 8.1 (KB4040958) |
| PATCH-23072 | KB4041085, 2017-09 Security and Quality Rollup for .NET Framework 4.5.2 on Windows 8.1 and Server 2012 R2 for x64 (KB4040974) |
| PATCH-23071 | KB4041085, 2017-09 Security and Quality Rollup for .NET Framework 4.5.2 on Windows 8.1 (KB4040974) |
| PATCH-23131 | KB4041091, 2017-09 Security Only Update for .NET Framework 4.5.2 on Windows Server 2012 for x64 (KB4040959) |
| PATCH-23128 | 2017-09 Security and Quality Rollup for .NET Framework 4.5.2 on Windows Server 2012 for x64 (KB4040975) |
| PATCH-23052 | KB4041093, 2017-09 Security Only Update for .NET Framework 2.0 on Windows Server 2008 SP2 for x64 (KB4040964) |
| PATCH-23051 | KB4041093, 2017-09 Security Only Update for .NET Framework 2.0 on Windows Server 2008 SP2 (KB4040964) |
| PATCH-23046 | KB4041086, 2017-09 Security and Quality Rollup for .NET Framework 2.0 on Windows Server 2008 SP2 for x64 (KB4040978) |
| PATCH-23045 | KB4041086, 2017-09 Security and Quality Rollup for .NET Framework 2.0 on Windows Server 2008 SP2 (KB4040978) |
| PATCH-23064 | KB4041090, 2017-09 Security Only Update for .NET Framework 3.5.1 on Windows 7 and Server 2008 R2 for x64 (KB4040966) |
| PATCH-23063 | KB4041090, 2017-09 Security Only Update for .NET Framework 3.5.1 on Windows 7 (KB4040966) |
| PATCH-23058 | KB4041083, 2017-09 Security and Quality Rollup for .NET Framework 3.5.1 on Windows 7 and Server 2008 R2 for x64 (KB4040980) |
| PATCH-23057 | KB4041083, 2017-09 Security and Quality Rollup for .NET Framework 3.5.1 on Windows 7 (KB4040980) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234