A vulnerability exists in certain .Net Framework API's and Visual Studio in the way they parse URL's, aka '.NET Framework and Visual Studio Spoofing Vulnerability'.
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
Link | Tags |
---|---|
https://access.redhat.com/errata/RHSA-2019:0349 | third party advisory vendor advisory |
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0657 | patch vendor advisory |
http://www.securityfocus.com/bid/106890 | third party advisory vdb entry |