MS16-035: Security Update for .NET Framework to Address Security Feature Bypass (3141780)
Description
A security feature bypass vulnerability exists in a .NET Framework component that does not properly validate certain elements of a signed XML document. An attacker who successfully exploited the vulnerability could modify the contents of an XML file without invalidating the signature associated with the file. If a .NET application relies on the signature to be non-malicious, the behavior of the application could become unpredictable. In custom applications, the security impact depends on the specific usage scenario.
Solution(s)
- WINDOWS-HOTFIX-MS16-023-0c7e9829-cc88-4af8-ae95-e2823ab2cbfa
- WINDOWS-HOTFIX-MS16-023-3f5f2fab-88aa-4fbf-975d-94424a363208
- WINDOWS-HOTFIX-MS16-023-62cef694-cd47-4d46-be15-e0a592991d07
- WINDOWS-HOTFIX-MS16-023-a52756d1-e676-45c3-8fa3-af607ba9a62e
- WINDOWS-HOTFIX-MS16-035-034159ba-138a-4ae5-ab02-2bbf753d79a8
- WINDOWS-HOTFIX-MS16-035-07242f74-1b44-4624-b917-a314ee36a4d4
- WINDOWS-HOTFIX-MS16-035-08d387ff-9357-4650-918a-8b40246f7a90
- WINDOWS-HOTFIX-MS16-035-099fd104-e101-4b2a-a579-3a51d53a0627
- WINDOWS-HOTFIX-MS16-035-0a1dc2de-ae46-4d25-899e-49fa3b95c56c
- WINDOWS-HOTFIX-MS16-035-13f3c9ab-a5d4-435d-9aad-a23f5b8275b2
- WINDOWS-HOTFIX-MS16-035-24aeb988-b368-435b-923b-c09b8a2d3fa5
- WINDOWS-HOTFIX-MS16-035-26ea18b6-a413-40ef-9ac2-4db9ce7db54a
- WINDOWS-HOTFIX-MS16-035-2c2c30ea-78d0-48a1-a7a7-ce6c08de9637
- WINDOWS-HOTFIX-MS16-035-2feb9405-6aaa-4ec5-ac95-8095e5a9ec65
- WINDOWS-HOTFIX-MS16-035-3c2884b2-2b71-41bf-b3f4-8ce51566299a
- WINDOWS-HOTFIX-MS16-035-3dcbaf77-e75d-470f-b258-51cd9b18b5cc
- WINDOWS-HOTFIX-MS16-035-4ab34c74-600c-43b2-abf7-ae06c50cac77
- WINDOWS-HOTFIX-MS16-035-4fa9dea2-0d04-4673-a077-b5b37f576ac1
- WINDOWS-HOTFIX-MS16-035-51ee86d9-974c-4e76-ac00-9a5deff0d1c1
- WINDOWS-HOTFIX-MS16-035-5cb7eab0-237e-4f05-a40f-eb38ce9861d0
- WINDOWS-HOTFIX-MS16-035-5d790d8d-f897-4ab0-8225-6401b1f6e18c
- WINDOWS-HOTFIX-MS16-035-65ad4d4e-f80f-469b-b498-dfcc365a5eb1
- WINDOWS-HOTFIX-MS16-035-701d9518-3567-41f9-a58e-e64e1075b57e
- WINDOWS-HOTFIX-MS16-035-730e1fd6-ded4-4e06-8036-55d9378ee5e6
- WINDOWS-HOTFIX-MS16-035-779795d4-2729-4588-837d-74cd55f75a27
- WINDOWS-HOTFIX-MS16-035-88b49b93-5dd4-40a1-9ee6-f6423e271903
- WINDOWS-HOTFIX-MS16-035-99d6a2a5-89e0-43a3-b14e-930e576332b9
- WINDOWS-HOTFIX-MS16-035-9fa65d30-bd68-434a-9c9e-fe68b9d2e73c
- WINDOWS-HOTFIX-MS16-035-9fd07740-cdfb-41fb-8d7e-24f14499cc05
- WINDOWS-HOTFIX-MS16-035-a367f5a4-635e-43f0-b8dc-789417427454
- WINDOWS-HOTFIX-MS16-035-a37b9668-3168-4979-be7c-f0c95f5090f8
- WINDOWS-HOTFIX-MS16-035-a9956de6-685e-4a58-be76-0d7dce995dfc
- WINDOWS-HOTFIX-MS16-035-aae99ce6-9cdd-478c-8e4c-e0d2c6a86342
- WINDOWS-HOTFIX-MS16-035-b3bb8116-cac1-4139-8439-6084fbeee9be
- WINDOWS-HOTFIX-MS16-035-bf4f027b-e0f1-4cfc-aabc-1d2707f4f4e9
- WINDOWS-HOTFIX-MS16-035-cc4975ce-0572-4eb9-ad62-200820a6b882
- WINDOWS-HOTFIX-MS16-035-d182ead8-204d-4a0d-be02-bdc2c5a515aa
- WINDOWS-HOTFIX-MS16-035-d2535e39-1e1e-4247-abcc-a2d33d78fb51
- WINDOWS-HOTFIX-MS16-035-d9be29df-a8bf-4b3a-8b6b-2b80ab2aa2ce
- WINDOWS-HOTFIX-MS16-035-dc75d2b5-64a4-417f-9e6f-4290076735a6
- WINDOWS-HOTFIX-MS16-035-dc7fc3e0-8ac5-4d55-b2ac-85bbb9fe9fe2
- WINDOWS-HOTFIX-MS16-035-e7325ac5-1857-448c-b4df-7257b909a8c1
- WINDOWS-HOTFIX-MS16-035-ef5f40d9-879f-45ed-9088-5c9b6e55a3e0
- WINDOWS-HOTFIX-MS16-035-ef935650-b5ad-4cd2-a374-534aa8b95598
- WINDOWS-HOTFIX-MS16-035-f8852fb2-8906-4c07-9d76-fc89d95478d2
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center