.NET Framework Remote Code Execution Vulnerability for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows 8.1 and Server 2012 R2 for x64 (KB4040972)
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
No records foundCVE Information
Patch Details
Patch associated with this vulnerability is supported by ManageEngine.
Patch ID
23074
Patch Description
KB4041085, 2017-09 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7 on Windows 8.1 and Server 2012 R2 for x64 (KB4040972)
References
http://www.securityfocus.com/bid/100742
http://www.securitytracker.com/id/1039324
https://github.com/bhdresh/CVE-2017-8759
https://github.com/nccgroup/CVE-2017-8759
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2017-8759
https://www.exploit-db.com/exploits/42711/