Microsoft .NET Framework and Visual Studio CVE-2019-0613 Remote Code Execution Vulnerability

Bugtraq ID:	106872
Class:	Input Validation Error
CVE:	CVE-2019-0613
Remote:	Yes
Local:	No
Published:	Feb 12 2019 12:00AM
Updated:	Feb 12 2019 12:00AM
Credit:	Soroush Dalili of NCC Group
Vulnerable:	Microsoft Visual Studio 2017 15.9 Microsoft Visual Studio 2017 0 Microsoft .NET Framework 4.7.2 Microsoft .NET Framework 4.7.1 Microsoft .NET Framework 4.6.2 Microsoft .NET Framework 4.6.1 Microsoft .NET Framework 3.5.1 Microsoft .NET Framework 4.7 Microsoft .NET Framework 4.6 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 3.5 Microsoft .NET Framework 3.0 Microsoft .NET Framework 2.0
Not Vulnerable:

Microsoft .NET Framework and Visual Studio CVE-2019-0613 Remote Code Execution Vulnerability

Microsoft .NET Framework and Visual Studio is prone to a remote code-execution vulnerability.

An attacker can exploit this issue to execute arbitrary code in the context of the current user. Failed exploit attempts may result in a denial of service condition.

Microsoft .NET Framework and Visual Studio CVE-2019-0613 Remote Code Execution Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

Microsoft .NET Framework and Visual Studio CVE-2019-0613 Remote Code Execution Vulnerability

References:

• Microsoft Homepage (Microsoft)
  
• CVE-2019-0613 | .NET Framework and Visual Studio Remote Code Execution Vulnerabi (Microsoft)