vulnerability
MS16-035: Security Update for .NET Framework to Address Security Feature Bypass (3141780)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 10 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | Mar 8, 2016 | Mar 8, 2016 | Nov 18, 2021 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
Mar 8, 2016
Added
Mar 8, 2016
Modified
Nov 18, 2021
Description
A security feature bypass vulnerability exists in a .NET Framework component that does not properly validate certain elements of a signed XML document. An attacker who successfully exploited the vulnerability could modify the contents of an XML file without invalidating the signature associated with the file. If a .NET application relies on the signature to be non-malicious, the behavior of the application could become unpredictable. In custom applications, the security impact depends on the specific usage scenario.
Solution(s)
WINDOWS-HOTFIX-MS16-023-0c7e9829-cc88-4af8-ae95-e2823ab2cbfaWINDOWS-HOTFIX-MS16-023-3f5f2fab-88aa-4fbf-975d-94424a363208WINDOWS-HOTFIX-MS16-023-62cef694-cd47-4d46-be15-e0a592991d07WINDOWS-HOTFIX-MS16-023-a52756d1-e676-45c3-8fa3-af607ba9a62eWINDOWS-HOTFIX-MS16-035-034159ba-138a-4ae5-ab02-2bbf753d79a8WINDOWS-HOTFIX-MS16-035-07242f74-1b44-4624-b917-a314ee36a4d4WINDOWS-HOTFIX-MS16-035-08d387ff-9357-4650-918a-8b40246f7a90WINDOWS-HOTFIX-MS16-035-099fd104-e101-4b2a-a579-3a51d53a0627WINDOWS-HOTFIX-MS16-035-0a1dc2de-ae46-4d25-899e-49fa3b95c56cWINDOWS-HOTFIX-MS16-035-13f3c9ab-a5d4-435d-9aad-a23f5b8275b2WINDOWS-HOTFIX-MS16-035-24aeb988-b368-435b-923b-c09b8a2d3fa5WINDOWS-HOTFIX-MS16-035-26ea18b6-a413-40ef-9ac2-4db9ce7db54aWINDOWS-HOTFIX-MS16-035-2c2c30ea-78d0-48a1-a7a7-ce6c08de9637WINDOWS-HOTFIX-MS16-035-2feb9405-6aaa-4ec5-ac95-8095e5a9ec65WINDOWS-HOTFIX-MS16-035-3c2884b2-2b71-41bf-b3f4-8ce51566299aWINDOWS-HOTFIX-MS16-035-3dcbaf77-e75d-470f-b258-51cd9b18b5ccWINDOWS-HOTFIX-MS16-035-4ab34c74-600c-43b2-abf7-ae06c50cac77WINDOWS-HOTFIX-MS16-035-4fa9dea2-0d04-4673-a077-b5b37f576ac1WINDOWS-HOTFIX-MS16-035-51ee86d9-974c-4e76-ac00-9a5deff0d1c1WINDOWS-HOTFIX-MS16-035-5cb7eab0-237e-4f05-a40f-eb38ce9861d0WINDOWS-HOTFIX-MS16-035-5d790d8d-f897-4ab0-8225-6401b1f6e18cWINDOWS-HOTFIX-MS16-035-65ad4d4e-f80f-469b-b498-dfcc365a5eb1WINDOWS-HOTFIX-MS16-035-701d9518-3567-41f9-a58e-e64e1075b57eWINDOWS-HOTFIX-MS16-035-730e1fd6-ded4-4e06-8036-55d9378ee5e6WINDOWS-HOTFIX-MS16-035-779795d4-2729-4588-837d-74cd55f75a27WINDOWS-HOTFIX-MS16-035-88b49b93-5dd4-40a1-9ee6-f6423e271903WINDOWS-HOTFIX-MS16-035-99d6a2a5-89e0-43a3-b14e-930e576332b9WINDOWS-HOTFIX-MS16-035-9fa65d30-bd68-434a-9c9e-fe68b9d2e73cWINDOWS-HOTFIX-MS16-035-9fd07740-cdfb-41fb-8d7e-24f14499cc05WINDOWS-HOTFIX-MS16-035-a367f5a4-635e-43f0-b8dc-789417427454WINDOWS-HOTFIX-MS16-035-a37b9668-3168-4979-be7c-f0c95f5090f8WINDOWS-HOTFIX-MS16-035-a9956de6-685e-4a58-be76-0d7dce995dfcWINDOWS-HOTFIX-MS16-035-aae99ce6-9cdd-478c-8e4c-e0d2c6a86342WINDOWS-HOTFIX-MS16-035-b3bb8116-cac1-4139-8439-6084fbeee9beWINDOWS-HOTFIX-MS16-035-bf4f027b-e0f1-4cfc-aabc-1d2707f4f4e9WINDOWS-HOTFIX-MS16-035-cc4975ce-0572-4eb9-ad62-200820a6b882WINDOWS-HOTFIX-MS16-035-d182ead8-204d-4a0d-be02-bdc2c5a515aaWINDOWS-HOTFIX-MS16-035-d2535e39-1e1e-4247-abcc-a2d33d78fb51WINDOWS-HOTFIX-MS16-035-d9be29df-a8bf-4b3a-8b6b-2b80ab2aa2ceWINDOWS-HOTFIX-MS16-035-dc75d2b5-64a4-417f-9e6f-4290076735a6WINDOWS-HOTFIX-MS16-035-dc7fc3e0-8ac5-4d55-b2ac-85bbb9fe9fe2WINDOWS-HOTFIX-MS16-035-e7325ac5-1857-448c-b4df-7257b909a8c1WINDOWS-HOTFIX-MS16-035-ef5f40d9-879f-45ed-9088-5c9b6e55a3e0WINDOWS-HOTFIX-MS16-035-ef935650-b5ad-4cd2-a374-534aa8b95598WINDOWS-HOTFIX-MS16-035-f8852fb2-8906-4c07-9d76-fc89d95478d2
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.