.NET Core 1.0, 1.1, and 2.0 allow an unauthenticated attacker to remotely cause a denial of service attack against a .NET Core web application by improperly parsing certificate data. A denial of service vulnerability exists when .NET Core improperly handles parsing certificate data, aka .NET CORE Denial Of Service Vulnerability.
Weakness
The product does not validate, or incorrectly validates, a certificate.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Aspnetcore | Microsoft | 1.0 (including) | 1.0 (including) |
| Aspnetcore | Microsoft | 1.1 (including) | 1.1 (including) |
| Aspnetcore | Microsoft | 2.0 (including) | 2.0 (including) |
| .NET Core on Red Hat Enterprise Linux | RedHat | rh-dotnet20-dotnet-0:2.0.3-4.el7 | * |
| .NET Core on Red Hat Enterprise Linux | RedHat | rh-dotnetcore10-dotnetcore-0:1.0.8-1.el7 | * |
| .NET Core on Red Hat Enterprise Linux | RedHat | rh-dotnetcore11-dotnetcore-0:1.1.5-1.el7 | * |
| .NET Core on Red Hat Enterprise Linux | RedHat | rh-dotnet20-dotnet-0:2.0.3-4.el7 | * |
| .NET Core on Red Hat Enterprise Linux | RedHat | rh-dotnetcore10-dotnetcore-0:1.0.8-1.el7 | * |
| .NET Core on Red Hat Enterprise Linux | RedHat | rh-dotnetcore11-dotnetcore-0:1.1.5-1.el7 | * |
| .NET Core on Red Hat Enterprise Linux | RedHat | rh-dotnet20-dotnet-0:2.0.3-4.el7 | * |
| .NET Core on Red Hat Enterprise Linux | RedHat | rh-dotnetcore10-dotnetcore-0:1.0.8-1.el7 | * |
| .NET Core on Red Hat Enterprise Linux | RedHat | rh-dotnetcore11-dotnetcore-0:1.1.5-1.el7 | * |
Potential Mitigations
Related Attack Patterns
References
- http://www.securityfocus.com/bid/101710
- http://www.securitytracker.com/id/1039787
- https://access.redhat.com/errata/RHSA-2017:3248
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11770
- http://www.securityfocus.com/bid/101710
- http://www.securitytracker.com/id/1039787
- https://access.redhat.com/errata/RHSA-2017:3248
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11770