virus logo FortiClient Vulnerability

Microsoft NET Core and NET Framework CVE-2020-1108 Denial of Service Vulnerability

description-logoDescription

A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests. An attacker who successfully exploited this vulnerability could cause a denial of service against a .NET Core or .NET Framework web application. The vulnerability can be exploited remotely, without authentication. A remote unauthenticated attacker could exploit this vulnerability by issuing specially crafted requests to the .NET Core or .NET Framework application. The update addresses the vulnerability by correcting how the .NET Core or .NET Framework web application handles web requests.

affected-products-logoAffected Applications

Microsoft .NET Framework 3.5 AND 4.8 on Windows Server version 1909 (Server Core installation)
Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)
Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2 on Windows RT 8.1
Microsoft .NET Framework 3.5 AND 4.8 on Windows Server version 1903 (Server Core installation)
Microsoft .NET Framework 4.5.2 on Windows RT 8.1
.NET Core 2.1
Microsoft .NET Framework 4.8 on Windows RT 8.1
Microsoft .NET Framework 4.8 on Windows Server version 1803 (Server Core Installation)
Windows Server 2008
Microsoft Visual Studio 2019 version 16.5
.NET Core 3.1
Windows Server 2016
Microsoft Visual Studio 2019 version 16.0
Windows Server 2012
Microsoft .NET Framework 3.5 AND 4.7.2 on Windows Server version 1803 (Server Core Installation)
Windows 8
Microsoft Visual Studio 2017 version 15.9 (includes 15.1 - 15.8)
Windows 10
Windows 7
.NET Core 5.0
Windows Server 2019

CVE References

CVE-2020-1108

Other References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2020-1108
ID 63732
Created May 12, 2020
Description
Updated		 Dec 21, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Microsoft
Patch auto
Application Microsoft .NET Framework 3.5 AND 4.8 on Windows Server version 1909 (Server Core installation) , Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) , Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2 on Windows RT 8.1 , Microsoft .NET Framework 3.5 AND 4.8 on Windows Server version 1903 (Server Core installation) , Microsoft .NET Framework 4.5.2 on Windows RT 8.1 , .NET Core 2.1 , Microsoft .NET Framework 4.8 on Windows RT 8.1 , Microsoft .NET Framework 4.8 on Windows Server version 1803 (Server Core Installation) , Windows Server 2008 , Microsoft Visual Studio 2019 version 16.5 , .NET Core 3.1 , Windows Server 2016 , Microsoft Visual Studio 2019 version 16.0 , Windows Server 2012 , Microsoft .NET Framework 3.5 AND 4.7.2 on Windows Server version 1803 (Server Core Installation) , Windows 8 , Microsoft Visual Studio 2017 version 15.9 (includes 15.1 - 15.8) , Windows 10 , Windows 7 , .NET Core 5.0 , Windows Server 2019