.NET Framework Remote Code Execution Vulnerability for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows 8.1 and Server 2012 R2 for x64 (KB4040956)
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
No records foundCVE Information
Patch Details
Patch associated with this vulnerability is supported by ManageEngine.
Patch ID
23080
Patch Description
KB4041092, 2017-09 Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows 8.1 and Server 2012 R2 for x64 (KB4040956)
References
http://www.securityfocus.com/bid/100742
http://www.securitytracker.com/id/1039324
https://github.com/bhdresh/CVE-2017-8759
https://github.com/nccgroup/CVE-2017-8759
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2017-8759
https://www.exploit-db.com/exploits/42711/