Sid 1-42186

Summary:

    OS-WINDOWS Microsoft Windows WMI DCOM arbitrary .NET serialization code execution attempt

Impact:

    Confidentiality Impact: COMPLETE Integrity Impact: COMPLETE Availability Impact: COMPLETE

Affected Systems:

    microsoft .net_framework 2.0 sp2
    microsoft .net_framework 3.5
    microsoft .net_framework 4.5.2
    microsoft .net_framework 4.6.1
    microsoft .net_framework 4.6.2
    microsoft .net_framework 4.6
    microsoft .net_framework 4.7
    microsoft .net_framework 3.5.1

Attack Scenarios:

    No data available

False Positives:

    None known

False Negatives:

    None known

Corrective Action:

    Upgrade to the latest non-affected version
    Apply vendor-provided patches

Contributors:

    No data available

Additional References: