Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA10695
HistoryNov 10, 2015 - 12:00 a.m.

KLA10695 Multiple vulnerabilities in Microsoft .NET Framework

2015-11-1000:00:00
Kaspersky Lab
threats.kaspersky.com
40

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.552 Medium

EPSS

Percentile

97.6%

JSON

Detect date:

11/10/2015

Severity:

Warning

Description:

Multiple serious vulnerabilities have been found in Microsoft .NET Framework. Malicious users can exploit these vulnerabilities to bypass security restrictions,.

Affected products:

Microsoft .NET Framework versions 2.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, 4.5.2, 4.6

Solution:

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories:

CVE-2015-6099
CVE-2015-6096
CVE-2015-6115

Impacts:

OSI

Related products:

Microsoft .NET Framework

CVE-IDS:

CVE-2015-60994.3Warning
CVE-2015-60964.3Warning
CVE-2015-61154.3Warning

Microsoft official advisories:

KB list:

3097999
3098784
3104507
3098780
3098779
3098785
3097995
3097997
3098000

References

Related

mskb 1
openvas 1
nessus 1
prion 3
symantec 3
cve 3
zdt 1
cvelist 3
checkpoint_advisories 3
ics 1
mskb
mskb
MS15-118: Security update for the .NET Framework to address elevation of privilege: November 10, 2015
2015-11-10 00:00:00
openvas
openvas
Microsoft .NET Framework Privilege Elevation Vulnerabilities (3104507)
2015-11-11 00:00:00
nessus
nessus
MS15-118: Security Update for .NET Framework to Address Elevation of Privilege (3104507)
2015-11-10 00:00:00
prion
prion
Cross site scripting
2015-11-11 12:59:00
Security feature bypass
2015-11-11 12:59:00
Information disclosure
2015-11-11 12:59:00
symantec
symantec
Microsoft .NET Framework CVE-2015-6099 Cross Site Scripting Vulnerability
2015-11-10 00:00:00
Microsoft .NET Framework CVE-2015-6115 ASLR Security Bypass Vulnerability
2015-11-10 00:00:00
Microsoft .NET Framework CVE-2015-6096 XML Handling Information Disclosure Vulnerability
2015-11-10 00:00:00
cve
cve
CVE-2015-6099
2015-11-11 12:59:38
CVE-2015-6115
2015-11-11 12:59:47
CVE-2015-6096
2015-11-11 12:59:35
zdt
zdt
Microsoft .NET Framework XSS / Privilege Escalation Vulnerability
2015-11-13 00:00:00
cvelist
cvelist
CVE-2015-6099
2015-11-11 11:00:00
CVE-2015-6115
2015-11-11 11:00:00
CVE-2015-6096
2015-11-11 11:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft .NET Information Disclosure (MS15-118: CVE-2015-6096)
2015-11-10 00:00:00
Microsoft .NET Framework ASLR Security Bypass (MS15-118: CVE-2015-6115)
2016-01-04 00:00:00
Web Clients HTTP URL JavaScript Function Cross-Site Scripting (CVE-2015-1159; CVE-2015-6099; CVE-2015-6972; CVE-2017-0068)
2015-06-01 00:00:00
ics
ics
OPC UA Products Built with the .NET Framework 4.5, 4.0, and 3.5
2021-05-13 12:00:00

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.552 Medium

EPSS

Percentile

97.6%

JSON
Related for KLA10695
mskb1openvas1nessus1prion3symantec3cve3zdt1cvelist3checkpoint_advisories3ics1