Executive Summary

Summary
TitleSecurity Update for .NET Framework (3205640)
Informations
NameMS16-155First vendor Publication2016-12-13
VendorMicrosoftLast vendor Modification2017-02-23
Severity (Vendor) N/ARevision2.1

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:N/A:N)
Cvss Base Score5Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Severity Rating: Important
Revision Note: V2.1 (February 23, 2017): Revised bulletin to announce a detection logic change to Monthly Rollup Release KB3205403 and Monthly Rollup Release KB3205404. This is an informational change only. Customers who have already successfully updated their systems do not need to take any action.
Summary: This security update resolves a vulnerability in Microsoft .NET 4.6.2 Framework?s Data Provider for SQL Server. A security vulnerability exists in Microsoft .NET Framework 4.6.2 that could allow an attacker to access information that is defended by the Always Encrypted feature.

Original Source

Url : https://technet.microsoft.com/en-us/library/security/MS16-155

CWE : Common Weakness Enumeration

%idName
100 %CWE-310Cryptographic Issues

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1

Nessus® Vulnerability Scanner

DateDescription
2016-12-13Name : The remote Windows host is affected by an information disclosure vulnerability.
File : smb_nt_ms16-155.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
DateInformations
2017-02-24 00:24:46
  • Multiple Updates
2017-02-24 00:17:07
  • Multiple Updates
2016-12-21 00:24:11
  • Multiple Updates
2016-12-20 12:05:28
  • Multiple Updates
2016-12-20 00:25:34
  • Multiple Updates
2016-12-20 00:16:19
  • Multiple Updates
2016-12-14 13:26:32
  • Multiple Updates
2016-12-13 21:26:53
  • Multiple Updates
2016-12-13 21:18:12
  • First insertion