A security feature bypass vulnerability exists in .Net Framework which could allow an attacker to bypass Device Guard, aka .NET Framework Device Guard Security Feature Bypass Vulnerability. This affects Microsoft .NET Framework 4.7.1, Microsoft .NET Framework 4.6, Microsoft .NET Framework 3.5, Microsoft .NET Framework 4.7/4.7.1, Microsoft .NET Framework 3.0, Microsoft .NET Framework 3.5.1, Microsoft .NET Framework 4.5.2, Microsoft .NET Framework 4.6.2/4.7/4.7.1, Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1, Microsoft .NET Framework 2.0, Microsoft .NET Framework 4.6/4.6.1/4.6.2.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| .net_framework | Microsoft | 2.0-sp2 (including) | 2.0-sp2 (including) |
| .net_framework | Microsoft | 3.0-sp2 (including) | 3.0-sp2 (including) |
References
- http://www.securityfocus.com/bid/104072
- http://www.securitytracker.com/id/1040851
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1039
- http://www.securityfocus.com/bid/104072
- http://www.securitytracker.com/id/1040851
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1039