‫ Microsoft .NET Framework Multiple Vulnerabilities

ID: IRCAD2014103572
Release Date: 2014-10-15
Criticality level: Highly critical
Software:
Microsoft .NET Framework 2.x
Microsoft .NET Framework 3.x
Microsoft .NET Framework 4.x
Description:
Multiple vulnerabilities have been reported in Microsoft .NET Framework, which can be exploited by malicious people to bypass certain security restrictions and compromise a vulnerable system.
1) An unspecified error related to .NET ClickOnce can be exploited to perform otherwise restricted actions and subsequently gain additional privileges.
2) An unspecified error when handling internationalized resource identifiers can be exploited to execute arbitrary code.
3) An unspecified error can be exploited to bypass the Address Space Layout Randomization (ASLR) security feature.
Solution
Apply update.
References:
MS14-057 (KB3000414, KB2968292, KB2968294, KB2968295, KB2968296, KB2972098, KB2972100, KB2972101, KB2972103, KB2972105, KB2972106, KB2972107, KB2978041, KB2978042, KB2979568, KB2979570, KB2979571, KB2979573, KB2979574, KB2979575, KB2979576, KB2979577, KB2979578):
Secunia:
 

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 27 مهر 1393

امتیاز

امتیاز شما
تعداد امتیازها:0