CVE-2019-0657
Published: Mar 6, 2019
Modified: Aug 4, 2024
Description
A vulnerability exists in certain .Net Framework API's and Visual Studio in the way they parse URL's, aka '.NET Framework and Visual Studio Spoofing Vulnerability'.
| Vendor | Product | Versions |
|---|---|---|
Microsoft | Microsoft .NET Framework 4.5.2 | affected Windows 7 for 32-bit Systems Service Pack 1affected Windows 7 for x64-based Systems Service Pack 1affected Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)affected Windows Server 2008 R2 for x64-based Systems Service Pack 1affected Windows Server 2012+8 more versions |
Microsoft | Microsoft .NET Framework 4.6 | affected Windows Server 2008 for 32-bit Systems Service Pack 2affected Windows Server 2008 for x64-based Systems Service Pack 2 |
Microsoft | .NET Core | affected 1affected 2.1affected 2.2 |
Microsoft | Microsoft Visual Studio | affected 2017 |
Microsoft | Microsoft .NET Framework 4.7.2 | affected Windows 10 Version 1803 for 32-bit Systemsaffected Windows 10 Version 1803 for x64-based Systemsaffected Windows Server, version 1803 (Server Core Installation)affected Windows 10 Version 1803 for ARM64-based Systemsaffected Windows 10 Version 1809 for 32-bit Systems+3 more versions |
Microsoft | Microsoft .NET Framework 4.6/4.6.1/4.6.2 | affected Windows 10 for 32-bit Systemsaffected Windows 10 for x64-based Systems |
Microsoft | Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2 | affected Windows 7 for 32-bit Systems Service Pack 1affected Windows 7 for x64-based Systems Service Pack 1affected Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)affected Windows Server 2008 R2 for x64-based Systems Service Pack 1affected Windows Server 2012+6 more versions |
Microsoft | Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 | affected Windows Server 2016affected Windows 10 Version 1607 for 32-bit Systemsaffected Windows 10 Version 1607 for x64-based Systemsaffected Windows Server 2016 (Server Core installation) |
Microsoft | Microsoft .NET Framework 4.7/4.7.1/4.7.2 | affected Windows 10 Version 1703 for 32-bit Systemsaffected Windows 10 Version 1703 for x64-based Systems |
Microsoft | Microsoft .NET Framework 4.7.1/4.7.2 | affected Windows 10 Version 1709 for 32-bit Systemsaffected Windows 10 Version 1709 for x64-based Systemsaffected Windows Server, version 1709 (Server Core Installation)affected Windows 10 Version 1709 for ARM64-based Systems |
Microsoft | PowerShell Core | affected 6.1affected 6.2 |
Microsoft | Microsoft Visual Studio 2017 | affected version 15.9 |
Microsoft | Microsoft .NET Framework 3.5 | affected Windows Server 2012affected Windows Server 2012 (Server Core installation)affected Windows 8.1 for 32-bit systemsaffected Windows 8.1 for x64-based systemsaffected Windows Server 2012 R2+20 more versions |
Microsoft | Microsoft .NET Framework 3.0 | affected Service Pack 2 on Windows Server 2008 for Itanium-Based Systems Service Pack 2affected Service Pack 2 on Windows Server 2008 for 32-bit Systems Service Pack 2affected Service Pack 2 on Windows Server 2008 for x64-based Systems Service Pack 2 |
Microsoft | Microsoft .NET Framework 2.0 | affected Service Pack 2 on Windows Server 2008 for Itanium-Based Systems Service Pack 2 |
Microsoft | Microsoft .NET Framework 3.5.1 | affected Windows 7 for 32-bit Systems Service Pack 1affected Windows 7 for x64-based Systems Service Pack 1affected Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)affected Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1affected Windows Server 2008 R2 for x64-based Systems Service Pack 1 |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now