Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

Description of the security update for Microsoft Dynamics NAV 2013 R2: March 10, 2020


View products that this article applies to.

A remote code execution vulnerability exists in Microsoft Dynamics NAV 2013 R2. A user who has the permission to access certain features that requires a call from the Role-Tailored Client that has the dataset structure can start arbitrary shell commands through deserialization.

To learn more about the vulnerability, go to CVE-2020-0905.

↑ Back to the top


How to obtain and install the update

Microsoft Download Center

The following file is available for download from the Microsoft Download Center:

Download Download the package now

↑ Back to the top


More information

Prerequisites

To apply this security update, you must have Microsoft Dynamics NAV 2013 installed.

Restart requirement

You may have to restart the computer after you apply this security update.

Security update replacement information

This security update doesn't replace other security updates.

Deployment information

For deployment details for this security update, go to the following article in the Microsoft Knowledge Base:

Security update deployment information: March 10, 2020

↑ Back to the top


Information about protection and security

Protect yourself online: Windows Security support

Learn how we guard against cyber threats: Microsoft Security

↑ Back to the top


Keywords: atdownload, kbbug, kbexpertiseinter, kbfix, kbmustloc, kbsecbulletin, kbsecreview, kbsecurity, kbsecvulnerability, kbsurveynew, kblangall

↑ Back to the top

Article Info
Article ID : 4551258
Revision : 9
Created on : 4/14/2020
Published on : 4/14/2020
Exists online : False
Views : 251