vulnerability

Microsoft CVE-2020-1108: .NET Core & .NET Framework Denial of Service Vulnerability

Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
May 12, 2020
Added
May 12, 2020
Modified
Jan 31, 2023

Description

A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests. An attacker who successfully exploited this vulnerability could cause a denial of service against a .NET Core or .NET Framework web application. The vulnerability can be exploited remotely, without authentication.
A remote unauthenticated attacker could exploit this vulnerability by issuing specially crafted requests to the .NET Core or .NET Framework application.
The update addresses the vulnerability by correcting how the .NET Core or .NET Framework web application handles web requests.

Solution(s)

msft-kb4552926-09541f56-6585-4be3-9acb-ec8b55f9d36amsft-kb4552926-4583cafe-8f5c-4bca-a5ed-59fe80653fc3msft-kb4552926-ffc68d48-a70a-4ef2-8c65-4344290c7e2emsft-kb4552928-5fcd546d-7b82-4bc5-b7f5-ad15075af621msft-kb4552928-a77d0bbf-b164-457e-bc2b-6ccea9adc1b2msft-kb4552929-32afdb04-aa40-4d3f-b87c-da6e0b21c15dmsft-kb4552929-836573bb-d511-41d0-9720-1f263f64b591msft-kb4552929-b054b24a-fed3-4d90-97ef-9f7b295343famsft-kb4552930-1551da56-fdcb-4d06-8428-f010d48c9153msft-kb4552930-78c5946c-0794-443a-8867-8be82d560b0fmsft-kb4552930-9818070b-8a60-4cfb-bb17-4dd2275f0366msft-kb4552931-04b68ba3-0ab7-454e-8283-00bcbaa48314msft-kb4552931-298c3484-e049-4c7c-bbec-06947cb7dc45msft-kb4552931-57e1964e-cfed-44b8-9e68-08f5e562ebd9msft-kb4552931-63ea98c8-f7c8-4581-bf9f-30c453d3bb8cmsft-kb4552931-66bece26-8ad9-4854-8d4c-7314a77c8a0emsft-kb4552931-6b504cf7-d7fc-43d0-a986-33acfc6e99b5msft-kb4552951-154a5019-9410-4aad-bb5e-959001d8d9cbmsft-kb4552951-5371b522-bf8e-4d5c-9fd6-0f7c0be175f3msft-kb4552951-606d457e-2447-415d-b846-6d20d6d5c94emsft-kb4552951-611af078-9792-4764-b209-d9a30a38fa68msft-kb4552951-68a14c82-a9f4-4a62-91b1-b35c353fa3b8msft-kb4552951-81361ee1-ccd7-46a5-927d-6426f83e475emsft-kb4552951-9bb2836f-efca-4849-a4b9-2037ae6fefe9msft-kb4552952-6ba9da02-ab38-4892-bda6-dbced494abc7msft-kb4552952-b943affb-a0e8-4d9c-9dc4-bc5933e075f6msft-kb4552952-c283710e-ed7f-4d0e-a8d4-17e5bae61979msft-kb4552952-c52b53e6-480c-4179-b25e-89f3069fd2c6msft-kb4552952-e6ac66de-8fb8-4a30-a0d9-a41560b2695amsft-kb4552952-e9deea60-8ce1-45cf-ab5e-f5e4f8e50cb5msft-kb4552952-e9f00aad-b374-4db5-979c-52241bf2c534msft-kb4552958-37ca7520-478a-474a-9c47-4d417d649b17msft-kb4552958-638118ff-f94a-4d6f-8612-e44d74c17bfdmsft-kb4552958-e5771e58-021b-4a1f-9b8c-59b127ad87b9msft-kb4552959-191c19c6-9d11-45fb-b8cc-6b51d5929d6cmsft-kb4552959-d6563c43-c53a-43fc-83e8-f29b335f9717msft-kb4552961-0fa0ae2e-13cf-4f94-9301-bed895929bc4msft-kb4552961-3c36adea-7191-43c0-8c61-65118c4d82b2msft-kb4552961-7f8b4b65-1403-44b2-a427-8d13341281b4msft-kb4552962-0bb01849-820c-4999-9f10-2792f6e965d7msft-kb4552962-c568871f-61a3-4f37-815c-6c83b9020d8emsft-kb4552967-3f831991-0fa1-4d04-b754-3f025cb69482msft-kb4552967-c80a83c7-074f-49ae-8bf5-dc810b796fd1msft-kb4552968-045e970e-e862-4d8d-93dc-10ccd9f4cf98msft-kb4552968-54607ba5-cb78-4f55-82be-2d3aadada66bmsft-kb4552968-84556a9f-75d7-49d3-8dcd-d104e917a83dmsft-kb4556807-667b6b79-dad1-4ca7-9e1b-316c1ab3b620msft-kb4556807-cc1b2352-a313-434e-97d9-4d5af44ebe22msft-kb4556812-5bb8e7e7-a95f-4bb7-b741-1060639b133dmsft-kb4556812-9210cc51-b6e2-4474-999e-1b1a1de3d6ddmicrosoft-windows-windows_server_2016-1607-kb4556813msft-kb4556813-c1e8e102-1514-4e96-92fa-7175ddced36fmsft-kb4556813-dd423833-a95c-426e-8eb1-8105e698d2c2msft-kb4556826-94eb3f6f-5f0d-47b5-ae9e-e54868948f5emsft-kb4556826-ef24f377-fa00-4a2f-9e3c-b1b284b77d0d
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.