CVE-2017-11770
N/A
N/A
Summary
.NET Core 1.0, 1.1, and 2.0 allow an unauthenticated attacker to remotely cause a denial of service attack against a .NET Core web application by improperly parsing certificate data. A denial of service vulnerability exists when .NET Core improperly handles parsing certificate data, aka ".NET CORE Denial Of Service Vulnerability".
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Microsoft Corporation | .NET Core | .NET Core 1.0, .NET Core 1.1, and .NET Core 2.0 | affected |
Weaknesses
- Denial of Service
ADP Enrichment
CVE Program Container
Additional References
- http://www.securitytracker.com/id/1039787
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11770
- https://access.redhat.com/errata/RHSA-2017:3248
- http://www.securityfocus.com/bid/101710
References
- http://www.securitytracker.com/id/1039787
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11770
- https://access.redhat.com/errata/RHSA-2017:3248
- http://www.securityfocus.com/bid/101710
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.