Today, we are releasing the July 2019 Cumulative Update, Security and Quality Rollup, and Security Only Update for .NET Framework.<\/p>\n
An authentication bypass vulnerability exists in Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF), allowing signing of SAML tokens with arbitrary symmetric keys. This vulnerability allows an attacker to impersonate another user, which can lead to elevation of privileges. The vulnerability exists in WCF, WIF 3.5 and above in .NET Framework, WIF 1.0 component in Windows, WIF Nuget package, and WIF implementation in SharePoint.\u00a0An unauthenticated attacker can exploit this by signing a SAML token with any arbitrary symmetric key.<\/p>\n
This security update addresses the issue by ensuring all versions of WCF and WIF validate the key used to sign SAML tokens correctly.<\/p>\n
CVE-2019-1006<\/a><\/p>\n <\/p>\n A denial of service vulnerability exists when Microsoft Common Object Runtime Library improperly handles web requests. An attacker who successfully exploited this vulnerability could cause a denial of service against a .NET web application. A remote unauthenticated attacker could exploit this vulnerability by issuing specially crafted requests to the .NET application.<\/p>\n The update addresses the vulnerability by correcting how the .NET web application handles web requests.<\/p>\n CVE-2019-1083<\/a><\/p>\n <\/p>\n A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.\u00a0An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of .NET Framework. In an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file.<\/p>\n The security update addresses the vulnerability by correcting how .NET Framework checks the source markup of a file.<\/p>\n CVE-2019-1113<\/a><\/p>\n <\/p>\n The Cumulative Update and Security and Quality Rollup are available via Windows Update, Windows Server Update Services, Microsoft Update Catalog, and Docker.\u00a0 The Security Only Update is available via\u00a0Windows Server Update Services and Microsoft Update Catalog.<\/p>\n <\/p>\n You can get the update via the Microsoft Update Catalog. For Windows 10, NET Framework 4.8 updates are available\u00a0via Windows Update, Windows Server Update Services, Microsoft Update Catalog.\u00a0 Updates for other versions of\u00a0.NET Framework are part of the Windows 10 Monthly Cumulative Update.<\/p>\n <\/p>\n The following table is for Windows 10 and Windows Server 2016+ versions.<\/p>\nCVE-2019-1083 \u2013\u00a0.NET Denial of Service Vulnerability<\/h3>\n
<\/a>CVE-2019-1113 \u2013\u00a0.NET Framework Remote Code Execution Vulnerability<\/h3>\n
<\/a>Getting the Update<\/h2>\n
<\/a>Microsoft Update Catalog<\/h3>\n