CVE-2018-8517

Name of the Vulnerable Software and Affected Versions Microsoft .NET Framework versions 3.5 through 4.7.2 Microsoft .NET Framework version 4.5.2 Microsoft .NET Framework version 4.6 Microsoft .NET Framework version 4.6.1 Microsoft .NET Framework version 4.6.2 Microsoft .NET Framework version 3.5.1

Description A denial of service issue exists due to improper handling of special web requests by .NET Framework. This could allow a remote attacker to cause a denial of service by issuing specially crafted requests to the .NET Framework application.

Recommendations For Microsoft .NET Framework versions 3.5 through 4.7.2, update to a version that includes the fix for this issue. For Microsoft .NET Framework version 4.5.2, update to a version that includes the fix for this issue. For Microsoft .NET Framework version 4.6, update to a version that includes the fix for this issue. For Microsoft .NET Framework version 4.6.1, update to a version that includes the fix for this issue. For Microsoft .NET Framework version 4.6.2, update to a version that includes the fix for this issue. For Microsoft .NET Framework version 3.5.1, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the application to minimize the risk of exploitation.