CVE-2016-0148
Microsoft .NET Framework mscoreei DLL Planting Remote Code Execution Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Microsoft .NET Framework 4.6 and 4.6.1 mishandles library loading, which allows local users to gain privileges via a crafted application, aka ".NET Framework Remote Code Execution Vulnerability."
Microsoft .NET Framework 4.6 y 4.6.1 no maneja correctamente la carga de librerías, lo que permite a usuarios locales obtener privilegios a través de una aplicación manipulada, también conocida como ".NET Framework Remote Code Execution Vulnerability".
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft .NET Framework. User interaction is required to exploit this vulnerability in that the target must visit a malicious web page or open a malicious directory or device.
The specific flaw exists within the handling of a specific named DLL used by .NET Framework. By providing a directory with this specific DLL, an attacker is able to force the process to load an arbitrary DLL. This allows an attacker to execute arbitrary code in the context of the process.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2015-12-04 CVE Reserved
- 2016-04-12 CVE Published
- 2024-06-10 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (6)
URL | Tag | Source |
---|---|---|
http://packetstormsecurity.com/files/136671/.NET-Framework-4.6-DLL-Hijacking.html | X_refsource_misc | |
http://seclists.org/fulldisclosure/2016/Apr/42 | Mailing List | |
http://www.securityfocus.com/archive/1/538063/100/0/threaded | Mailing List | |
http://www.securitytracker.com/id/1035535 | Third Party Advisory | |
http://www.zerodayinitiative.com/advisories/ZDI-16-234 | Third Party Advisory |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-041 | 2018-10-12 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Microsoft Search vendor "Microsoft" | .net Framework Search vendor "Microsoft" for product ".net Framework" | 4.6 Search vendor "Microsoft" for product ".net Framework" and version "4.6" | - |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | .net Framework Search vendor "Microsoft" for product ".net Framework" | 4.6.1 Search vendor "Microsoft" for product ".net Framework" and version "4.6.1" | - |
Affected
|