FortiClient VulnerabilityMicrosoft .NET Framework CVE-2020-1046 Remote Code Execution Vulnerability
Description
A remote code execution vulnerability exists when Microsoft .NET Framework processes input. An attacker who successfully exploited this vulnerability could take control of an affected system. To exploit the vulnerability, an attacker would need to be able to upload a specially crafted file to a web application. The security update addresses the vulnerability by correcting how .NET Framework processes input.
Affected Applications
Microsoft .NET Framework 3.5 on Windows Server version 2004 (Server Core installation)
Windows 7
Windows Server 2016
Windows Server 2012
Microsoft .NET Framework 3.5 on Windows Server version 1903 (Server Core installation)
Windows 8
Microsoft .NET Framework 3.5 on Windows Server version 1909 (Server Core installation)
Windows 10
Windows Server 2008
Windows Server 2019
CVE References
CVE-2020-1046Other References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2020-1046| ID | 64741 |
| Created | Aug 11, 2020 |
| Description Updated |
Jan 08, 2024 |
| Risk |
|
| Coverage | FortiClient |
| OS | Windows |
| Vendor | Microsoft |
| Patch | auto |
| Application | Microsoft .NET Framework 3.5 on Windows Server version 2004 (Server Core installation) , Windows 7 , Windows Server 2016 , Windows Server 2012 , Microsoft .NET Framework 3.5 on Windows Server version 1903 (Server Core installation) , Windows 8 , Microsoft .NET Framework 3.5 on Windows Server version 1909 (Server Core installation) , Windows 10 , Windows Server 2008 , Windows Server 2019 |