Centrify

Tips for finding Knowledge Articles

  • - Enter just a few key words related to your question or problem
  • - Add Key words to refine your search as necessary
  • - Do not use punctuation
  • - Search is not case sensitive
  • - Avoid non-descriptive filler words like "how", "the", "what", etc.
  • - If you do not find what you are looking for the first time,reduce the number of key words you enter and try searching again.
  • - Minimum supported Internet Explorer version is IE9
Home  >
article

KB-11271: Do CVE-2018-8202, CVE-2018-8260, CVE-2018-8284, CVE-2018-8356, CVE-2018-1039, CVE-2018-0765 vulnerabilities affect Centrify?

Authentication Service ,  

26 October,18 at 09:31 AM

Applies to: All Windows products from Centrify

Question:

Do CVE-2018-8202, CVE-2018-8260, CVE-2018-8284, CVE-2018-8356, CVE-2018-1039, CVE-2018-0765 vulnerabilities affect Centrify?

Answer:

According to Microsoft, this is CVE-2010-3190

For an attack to be successful, a user must visit an untrusted remote file system location or WebDAV share and open a file associated with an affected application built using MFC.

Those CVEs are related to Microsoft .NET. 

Centrify dynamically load the .NET framework DLL's.
The customers should following Microsoft's recommendations to apply the corresponding patches then the issue should be resolved.

Related Articles

 articleKB-39695: Does vulnerability CVE-2020-1472 affect Centrify? articleKB-47815: Is Centrify affected by sudo vulnerability in CVE-2021-3156 articleKB-11225: Do CVE-2018-10933 vulnerabilities affect Centrify DirectControl? articleKB-9655: How Does the Meltdown & Spectre Vulnerabilities Affect Centrify articleKB-20566: Do the following CVEs vulnerabilities affect Centrify DirectControl? articleKB-14641: Does the CVE-2019-11815 vulnerability affect Centrify? articleKB-6864: Do CVE-2016-2109, CVE-2016-2108, CVE-2016-2107,CVE-2016-2106, CVE-2016-2105, CVE-2016-2176 vulnerabilities affect Centrify DirectControl? articleKB-6030: Do CVE-2015-1794, CVE-2015-1794, CVE-2015-3193, CVE-2015-3194, CVE-2015-3195 and CVE-2015-3196 vulnerabilities affect DirectControl? articleKB-17096: Does the CVE-2019-0708 AA19-168A Vulnerability affect Centrify?