Vulnerability   
Search   
    Search 324607 CVE descriptions
and 146377 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.804777
Category:Windows : Microsoft Bulletins
Title:Microsoft .NET Framework Remote Code Execution Vulnerability (3000414)
Summary:This host is missing a critical security; update according to Microsoft Bulletin MS14-057.
Description:Summary:
This host is missing a critical security
update according to Microsoft Bulletin MS14-057.

Vulnerability Insight:
Multiple flaws are due to:

- An unspecified error related to .NET ClickOnce.

- An unspecified error when handling internationalized resource identifiers.

- An unspecified error.

Vulnerability Impact:
Successful exploitation will allow
attackers to bypass certain security restrictions and compromise a
vulnerable system.

Affected Software/OS:
Microsoft .NET Framework 2.0, 3.5, 3.5.1, 4.0, 4.5, 4.5.1 and 4.5.2.

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2014-4073
BugTraq ID: 70313
http://www.securityfocus.com/bid/70313
Microsoft Security Bulletin: MS14-057
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-057
http://www.securitytracker.com/id/1031021
http://secunia.com/advisories/60969
Common Vulnerability Exposure (CVE) ID: CVE-2014-4121
BugTraq ID: 70351
http://www.securityfocus.com/bid/70351
Common Vulnerability Exposure (CVE) ID: CVE-2014-4122
BugTraq ID: 70312
http://www.securityfocus.com/bid/70312
CopyrightCopyright (C) 2014 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2025 E-Soft Inc. All rights reserved.