Technical Information

Brief overview of the risk:
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests. An attacker who successfully exploited this vulnerability could cause a denial of service against an ASP.NET Core web application. The vulnerability can be exploited remotely, without authentication.

Detailed Information on the risk:
A remote unauthenticated attacker could exploit this vulnerability by issuing specially crafted requests to the .NET Core application.

Further information on this exploit is available at : CVE-2018-0808