Centrify

Tips for finding Knowledge Articles

  • - Enter just a few key words related to your question or problem
  • - Add Key words to refine your search as necessary
  • - Do not use punctuation
  • - Search is not case sensitive
  • - Avoid non-descriptive filler words like "how", "the", "what", etc.
  • - If you do not find what you are looking for the first time,reduce the number of key words you enter and try searching again.
  • - Minimum supported Internet Explorer version is IE9
Home  >
article

KB-11271: Do CVE-2018-8202, CVE-2018-8260, CVE-2018-8284, CVE-2018-8356, CVE-2018-1039, CVE-2018-0765 vulnerabilities affect Centrify?

Authentication Service ,  

26 October,18 at 09:31 AM

Applies to: All Windows products from Centrify

Question:

Do CVE-2018-8202, CVE-2018-8260, CVE-2018-8284, CVE-2018-8356, CVE-2018-1039, CVE-2018-0765 vulnerabilities affect Centrify?

Answer:

According to Microsoft, this is CVE-2010-3190

For an attack to be successful, a user must visit an untrusted remote file system location or WebDAV share and open a file associated with an affected application built using MFC.

Those CVEs are related to Microsoft .NET. 

Centrify dynamically load the .NET framework DLL's.
The customers should following Microsoft's recommendations to apply the corresponding patches then the issue should be resolved.

Still have questions? Click here to log a technical support case, or collaborate with your peers in Centrify's Online Community.

Related Articles

 articleKB-20566: Do the following CVEs vulnerabilities affect Centrify DirectControl? articleKB-11225: Do CVE-2018-10933 vulnerabilities affect Centrify DirectControl? articleKB-6864: Do CVE-2016-2109, CVE-2016-2108, CVE-2016-2107,CVE-2016-2106, CVE-2016-2105, CVE-2016-2176 vulnerabilities affect Centrify DirectControl? articleKB-9655: How Does the Meltdown & Spectre Vulnerabilities Affect Centrify articleKB-14641: Does the CVE-2019-11815 vulnerability affect Centrify? articleKB-17096: Does the CVE-2019-0708 AA19-168A Vulnerability affect Centrify? articleKB-6030: Do CVE-2015-1794, CVE-2015-1794, CVE-2015-3193, CVE-2015-3194, CVE-2015-3195 and CVE-2015-3196 vulnerabilities affect DirectControl? articleKB-6131: Is the Centrify ssh client affected by OpenSSH vulnerabilities CVE-2016-0777 and CVE-2016-0778? articleKB-39695: Does vulnerability CVE-2020-1472 affect Centrify?