Details of VAR-201903-1467

ID

VAR-201903-1467

CVE

CVE-2019-0657

TITLE

plural Microsoft Vulnerability related to input validation in products

Trust: 0.8

sources: JVNDB: JVNDB-2019-002326

DESCRIPTION

A vulnerability exists in certain .Net Framework API's and Visual Studio in the way they parse URL's, aka '.NET Framework and Visual Studio Spoofing Vulnerability'. plural Microsoft The product includes URL There is a vulnerability related to input validation due to incomplete analysis method. An attacker can exploit this issue to conduct spoofing attacks and perform unauthorized actions; other attacks are also possible. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: .NET Core on Red Hat Enterprise Linux security update for February 2019 Advisory ID: RHSA-2019:0349-01 Product: .NET Core on Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2019:0349 Issue date: 2019-02-14 CVE Names: CVE-2019-0657 ==================================================================== 1. Summary: Updates for rh-dotnetcore10-dotnetcore, rh-dotnetcore11-dotnetcore, rh-dotnet21-dotnet, and rh-dotnet22-dotnet are now available for .NET Core on Red Hat Enterprise Linux. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 .NET Core on Red Hat Enterprise Linux Server (v. 7) - x86_64 .NET Core on Red Hat Enterprise Linux Workstation (v. 7) - x86_64 3. Description: .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET Core that address security vulnerabilities are now available. The updated versions are .NET Core 1.0.14, 1.1.11, 2.1.8, and 2.2.2. Security Fix(es): * .dotnet: Domain-spoofing attack in System.Uri (CVE-2019-0657) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. For more information, please refer to the upstream doc in the References section. 4. Solution: For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1673891 - CVE-2019-0657 dotnet: Domain-spoofing attack in System.Uri 6. Package List: .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7): Source: rh-dotnetcore10-dotnetcore-1.0.14-1.el7.src.rpm x86_64: rh-dotnetcore10-dotnetcore-1.0.14-1.el7.x86_64.rpm rh-dotnetcore10-dotnetcore-debuginfo-1.0.14-1.el7.x86_64.rpm .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7): Source: rh-dotnetcore11-dotnetcore-1.1.11-2.el7.src.rpm x86_64: rh-dotnetcore11-dotnetcore-1.1.11-2.el7.x86_64.rpm rh-dotnetcore11-dotnetcore-debuginfo-1.1.11-2.el7.x86_64.rpm .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7): Source: rh-dotnet21-2.1-7.el7.src.rpm rh-dotnet21-dotnet-2.1.504-1.el7.src.rpm x86_64: rh-dotnet21-2.1-7.el7.x86_64.rpm rh-dotnet21-dotnet-2.1.504-1.el7.x86_64.rpm rh-dotnet21-dotnet-debuginfo-2.1.504-1.el7.x86_64.rpm rh-dotnet21-dotnet-host-2.1.8-1.el7.x86_64.rpm rh-dotnet21-dotnet-runtime-2.1-2.1.8-1.el7.x86_64.rpm rh-dotnet21-dotnet-sdk-2.1-2.1.504-1.el7.x86_64.rpm rh-dotnet21-dotnet-sdk-2.1.5xx-2.1.504-1.el7.x86_64.rpm rh-dotnet21-runtime-2.1-7.el7.x86_64.rpm .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7): Source: rh-dotnet22-2.2-3.el7.src.rpm rh-dotnet22-dotnet-2.2.104-2.el7.src.rpm x86_64: rh-dotnet22-2.2-3.el7.x86_64.rpm rh-dotnet22-dotnet-2.2.104-2.el7.x86_64.rpm rh-dotnet22-dotnet-debuginfo-2.2.104-2.el7.x86_64.rpm rh-dotnet22-dotnet-host-2.2.2-2.el7.x86_64.rpm rh-dotnet22-dotnet-host-fxr-2.2-2.2.2-2.el7.x86_64.rpm rh-dotnet22-dotnet-runtime-2.2-2.2.2-2.el7.x86_64.rpm rh-dotnet22-dotnet-sdk-2.2-2.2.104-2.el7.x86_64.rpm rh-dotnet22-dotnet-sdk-2.2.1xx-2.2.104-2.el7.x86_64.rpm rh-dotnet22-runtime-2.2-3.el7.x86_64.rpm .NET Core on Red Hat Enterprise Linux Server (v. 7): Source: rh-dotnetcore10-dotnetcore-1.0.14-1.el7.src.rpm x86_64: rh-dotnetcore10-dotnetcore-1.0.14-1.el7.x86_64.rpm rh-dotnetcore10-dotnetcore-debuginfo-1.0.14-1.el7.x86_64.rpm .NET Core on Red Hat Enterprise Linux Server (v. 7): Source: rh-dotnetcore11-dotnetcore-1.1.11-2.el7.src.rpm x86_64: rh-dotnetcore11-dotnetcore-1.1.11-2.el7.x86_64.rpm rh-dotnetcore11-dotnetcore-debuginfo-1.1.11-2.el7.x86_64.rpm .NET Core on Red Hat Enterprise Linux Server (v. 7): Source: rh-dotnet21-2.1-7.el7.src.rpm rh-dotnet21-dotnet-2.1.504-1.el7.src.rpm x86_64: rh-dotnet21-2.1-7.el7.x86_64.rpm rh-dotnet21-dotnet-2.1.504-1.el7.x86_64.rpm rh-dotnet21-dotnet-debuginfo-2.1.504-1.el7.x86_64.rpm rh-dotnet21-dotnet-host-2.1.8-1.el7.x86_64.rpm rh-dotnet21-dotnet-runtime-2.1-2.1.8-1.el7.x86_64.rpm rh-dotnet21-dotnet-sdk-2.1-2.1.504-1.el7.x86_64.rpm rh-dotnet21-dotnet-sdk-2.1.5xx-2.1.504-1.el7.x86_64.rpm rh-dotnet21-runtime-2.1-7.el7.x86_64.rpm .NET Core on Red Hat Enterprise Linux Server (v. 7): Source: rh-dotnet22-2.2-3.el7.src.rpm rh-dotnet22-dotnet-2.2.104-2.el7.src.rpm x86_64: rh-dotnet22-2.2-3.el7.x86_64.rpm rh-dotnet22-dotnet-2.2.104-2.el7.x86_64.rpm rh-dotnet22-dotnet-debuginfo-2.2.104-2.el7.x86_64.rpm rh-dotnet22-dotnet-host-2.2.2-2.el7.x86_64.rpm rh-dotnet22-dotnet-host-fxr-2.2-2.2.2-2.el7.x86_64.rpm rh-dotnet22-dotnet-runtime-2.2-2.2.2-2.el7.x86_64.rpm rh-dotnet22-dotnet-sdk-2.2-2.2.104-2.el7.x86_64.rpm rh-dotnet22-dotnet-sdk-2.2.1xx-2.2.104-2.el7.x86_64.rpm rh-dotnet22-runtime-2.2-3.el7.x86_64.rpm .NET Core on Red Hat Enterprise Linux Workstation (v. 7): Source: rh-dotnetcore10-dotnetcore-1.0.14-1.el7.src.rpm x86_64: rh-dotnetcore10-dotnetcore-1.0.14-1.el7.x86_64.rpm rh-dotnetcore10-dotnetcore-debuginfo-1.0.14-1.el7.x86_64.rpm .NET Core on Red Hat Enterprise Linux Workstation (v. 7): Source: rh-dotnetcore11-dotnetcore-1.1.11-2.el7.src.rpm x86_64: rh-dotnetcore11-dotnetcore-1.1.11-2.el7.x86_64.rpm rh-dotnetcore11-dotnetcore-debuginfo-1.1.11-2.el7.x86_64.rpm .NET Core on Red Hat Enterprise Linux Workstation (v. 7): Source: rh-dotnet21-2.1-7.el7.src.rpm rh-dotnet21-dotnet-2.1.504-1.el7.src.rpm x86_64: rh-dotnet21-2.1-7.el7.x86_64.rpm rh-dotnet21-dotnet-2.1.504-1.el7.x86_64.rpm rh-dotnet21-dotnet-debuginfo-2.1.504-1.el7.x86_64.rpm rh-dotnet21-dotnet-host-2.1.8-1.el7.x86_64.rpm rh-dotnet21-dotnet-runtime-2.1-2.1.8-1.el7.x86_64.rpm rh-dotnet21-dotnet-sdk-2.1-2.1.504-1.el7.x86_64.rpm rh-dotnet21-dotnet-sdk-2.1.5xx-2.1.504-1.el7.x86_64.rpm rh-dotnet21-runtime-2.1-7.el7.x86_64.rpm .NET Core on Red Hat Enterprise Linux Workstation (v. 7): Source: rh-dotnet22-2.2-3.el7.src.rpm rh-dotnet22-dotnet-2.2.104-2.el7.src.rpm x86_64: rh-dotnet22-2.2-3.el7.x86_64.rpm rh-dotnet22-dotnet-2.2.104-2.el7.x86_64.rpm rh-dotnet22-dotnet-debuginfo-2.2.104-2.el7.x86_64.rpm rh-dotnet22-dotnet-host-2.2.2-2.el7.x86_64.rpm rh-dotnet22-dotnet-host-fxr-2.2-2.2.2-2.el7.x86_64.rpm rh-dotnet22-dotnet-runtime-2.2-2.2.2-2.el7.x86_64.rpm rh-dotnet22-dotnet-sdk-2.2-2.2.104-2.el7.x86_64.rpm rh-dotnet22-dotnet-sdk-2.2.1xx-2.2.104-2.el7.x86_64.rpm rh-dotnet22-runtime-2.2-3.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2019-0657 https://access.redhat.com/security/updates/classification/#moderate https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0657 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXGTxZNzjgjWX9erEAQg28RAAkXyiq8u2m6G6BJN/7LqO31WHqXGmf+Em SeGsTnrnV9YpjFqPXby3WFz3AHGrTITrOy+JA2WyYTezgc3F4aZu28jHCgsuRJmU AvEg8XitYunmg9sxzr0SUmf8bleFUpawLNh+HiHC/fVUSrHA953yH6QjPDj3KT3+ 27SmMMmUvdqpZOxYrHN9iPfYiqONIKEkHq6vGkplqePPOkWja7v7r7UYm8I493zN cFLWzVI6N17qsLIqe2OduMtZ0tBcdOdKwjxi4BVbVwNmhV1qiXfBotP7RdRjvVgu SJw2LObFjPmfHBZX7c8Q+S4oWSLTO+YnqEzjRopXy8adaxxxFDvYCb5FJ5YGvFNK eI4SDGilbT73PXISefvmxjPM3Vu2T7yvvgGwg9Yl64DPgsLLFBxm2kEpXE7h3ZkH JiTBjT3eOPhuK43X5+X9VnM/9C7Add1xb9HMz1iWvJQidKKJ44FDGFhWoHXZMa2Z oca6jNXGpzqUtpMgsnC4ZM7WISyNtnVdBBE31xwEPl1ssi+Mrsq8lFWiFt1GUnQQ /DCPVS8L1aTsIb1q6SUTzqRkEMi2jADvP+tWohxMw/M2NNFKIEbfEgld2xO5X79F +edr0KVq8fgRgN9GP6rs+xNtS30uO6fLNLzXiT/7kgyvmadyuyzpye8mjDDlzJYX 1Uwk7uAgds0=IIGV -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce

Trust: 1.98

sources: NVD: CVE-2019-0657 // JVNDB: JVNDB-2019-002326 // BID: 106890 // PACKETSTORM: 151684

AFFECTED PRODUCTS

vendor:	microsoft	model:	powershell core	scope:	eq	version:	6.1	Trust: 2.1
vendor:	microsoft	model:	.net framework	scope:	eq	version:	4.7.2	Trust: 2.1
vendor:	microsoft	model:	.net framework	scope:	eq	version:	4.7.1	Trust: 2.1
vendor:	microsoft	model:	.net framework	scope:	eq	version:	4.6.2	Trust: 2.1
vendor:	microsoft	model:	.net framework	scope:	eq	version:	4.6.1	Trust: 2.1
vendor:	microsoft	model:	.net framework	scope:	eq	version:	3.5.1	Trust: 2.1
vendor:	microsoft	model:	.net framework	scope:	eq	version:	4.7	Trust: 2.1
vendor:	microsoft	model:	.net framework	scope:	eq	version:	4.6	Trust: 2.1
vendor:	microsoft	model:	.net framework	scope:	eq	version:	4.5.2	Trust: 2.1
vendor:	microsoft	model:	.net framework	scope:	eq	version:	3.5	Trust: 2.1
vendor:	microsoft	model:	.net core	scope:	eq	version:	2.2	Trust: 2.1
vendor:	microsoft	model:	.net core	scope:	eq	version:	2.1	Trust: 2.1
vendor:	microsoft	model:	.net core	scope:	eq	version:	1.0	Trust: 2.1
vendor:	microsoft	model:	.net framework	scope:	eq	version:	3.0	Trust: 1.3
vendor:	microsoft	model:	.net framework	scope:	eq	version:	2.0	Trust: 1.3
vendor:	microsoft	model:	powershell core	scope:	eq	version:	6.2	Trust: 1.1
vendor:	microsoft	model:	powershell core	scope:	eq	version:	6.0	Trust: 1.0
vendor:	microsoft	model:	visual studio 2017	scope:	eq	version:	-	Trust: 1.0
vendor:	microsoft	model:	visual studio 2017	scope:	eq	version:	15.9	Trust: 1.0
vendor:	microsoft	model:	.net framework	scope:	eq	version:	2.0 sp2	Trust: 0.8
vendor:	microsoft	model:	.net framework	scope:	eq	version:	3.0 sp2	Trust: 0.8
vendor:	microsoft	model:	visual studio	scope:	eq	version:	2017	Trust: 0.8
vendor:	microsoft	model:	visual studio	scope:	eq	version:	2017 version 15.9	Trust: 0.8
vendor:	microsoft	model:	visual studio	scope:	eq	version:	201715.9	Trust: 0.3
vendor:	microsoft	model:	visual studio	scope:	eq	version:	20170	Trust: 0.3
vendor:	microsoft	model:	.net core	scope:	eq	version:	1.1	Trust: 0.3

sources: BID: 106890 // JVNDB: JVNDB-2019-002326 // NVD: CVE-2019-0657

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2019-0657
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2019-0657
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-201902-374
value:	MEDIUM
Trust: 0.6

nvd@nist.gov:	CVE-2019-0657
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8

nvd@nist.gov:	CVE-2019-0657
baseSeverity:	MEDIUM
baseScore:	5.9
vectorString:	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
attackVector:	NETWORK
attackComplexity:	HIGH
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	HIGH
availabilityImpact:	NONE
exploitabilityScore:	2.2
impactScore:	3.6
version:	3.0
Trust: 1.8

sources: JVNDB: JVNDB-2019-002326 // CNNVD: CNNVD-201902-374 // NVD: CVE-2019-0657

PROBLEMTYPE DATA

problemtype:

CWE-20

Trust: 1.8

sources: JVNDB: JVNDB-2019-002326 // NVD: CVE-2019-0657

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201902-374

TYPE

input validation

Trust: 0.6

sources: CNNVD: CNNVD-201902-374

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-002326

PATCH

title:	CVE-2019-0657 \| .NET Framework and Visual Studio Spoofing Vulnerability	url:	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0657	Trust: 0.8
title:	CVE-2019-0657 \| .NET Framework と Visual Studio のなりすましの脆弱性	url:	https://portal.msrc.microsoft.com/ja-JP/security-guidance/advisory/CVE-2019-0657	Trust: 0.8
title:	Microsoft .NET Framework and Visual Studio Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=89188	Trust: 0.6

sources: JVNDB: JVNDB-2019-002326 // CNNVD: CNNVD-201902-374

EXTERNAL IDS

db:	NVD	id:	CVE-2019-0657	Trust: 2.8
db:	BID	id:	106890	Trust: 1.9
db:	JVNDB	id:	JVNDB-2019-002326	Trust: 0.8
db:	PACKETSTORM	id:	151684	Trust: 0.7
db:	AUSCERT	id:	ESB-2019.0476	Trust: 0.6
db:	CNNVD	id:	CNNVD-201902-374	Trust: 0.6

sources: BID: 106890 // JVNDB: JVNDB-2019-002326 // PACKETSTORM: 151684 // CNNVD: CNNVD-201902-374 // NVD: CVE-2019-0657

REFERENCES

url:	https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/cve-2019-0657	Trust: 2.0
url:	http://www.securityfocus.com/bid/106890	Trust: 1.6
url:	https://nvd.nist.gov/vuln/detail/cve-2019-0657	Trust: 1.5
url:	https://access.redhat.com/errata/rhsa-2019:0349	Trust: 1.1
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-0657	Trust: 0.8
url:	https://www.ipa.go.jp/security/ciadr/vul/20190213-ms.html	Trust: 0.8
url:	http://www.jpcert.or.jp/at/2019/at190006.html	Trust: 0.8
url:	https://vigilance.fr/vulnerability/microsoft-visual-studio-vulnerabilities-of-february-2019-28512	Trust: 0.6
url:	https://vigilance.fr/vulnerability/microsoft-net-vulnerabilities-of-february-2019-28485	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/75638	Trust: 0.6
url:	https://packetstormsecurity.com/files/151684/red-hat-security-advisory-2019-0349-01.html	Trust: 0.6
url:	https://github.com/powershell/announcements/issues/14	Trust: 0.3
url:	http://www.microsoft.com	Trust: 0.3
url:	https://www.redhat.com/mailman/listinfo/rhsa-announce	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2019-0657	Trust: 0.1
url:	https://bugzilla.redhat.com/):	Trust: 0.1
url:	https://access.redhat.com/security/team/key/	Trust: 0.1
url:	https://access.redhat.com/articles/11258	Trust: 0.1
url:	https://access.redhat.com/security/updates/classification/#moderate	Trust: 0.1
url:	https://access.redhat.com/security/team/contact/	Trust: 0.1

sources: BID: 106890 // JVNDB: JVNDB-2019-002326 // PACKETSTORM: 151684 // CNNVD: CNNVD-201902-374 // NVD: CVE-2019-0657

CREDITS

Jonathan Birch of Microsoft Corporation,Red Hat

Trust: 0.6

sources: CNNVD: CNNVD-201902-374

SOURCES

db:	BID	id:	106890
db:	JVNDB	id:	JVNDB-2019-002326
db:	PACKETSTORM	id:	151684
db:	CNNVD	id:	CNNVD-201902-374
db:	NVD	id:	CVE-2019-0657

LAST UPDATE DATE

2024-08-14T15:43:49.843000+00:00

SOURCES UPDATE DATE

db:	BID	id:	106890	date:	2019-02-21T05:00:00
db:	JVNDB	id:	JVNDB-2019-002326	date:	2019-04-05T00:00:00
db:	CNNVD	id:	CNNVD-201902-374	date:	2019-04-01T00:00:00
db:	NVD	id:	CVE-2019-0657	date:	2019-03-07T16:55:52.720

SOURCES RELEASE DATE

db:	BID	id:	106890	date:	2019-02-12T00:00:00
db:	JVNDB	id:	JVNDB-2019-002326	date:	2019-04-05T00:00:00
db:	PACKETSTORM	id:	151684	date:	2019-02-14T14:59:07
db:	CNNVD	id:	CNNVD-201902-374	date:	2019-02-12T00:00:00
db:	NVD	id:	CVE-2019-0657	date:	2019-03-05T23:29:02.037