Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2014-0253
HistoryFeb 12, 2014 - 4:50 a.m.

CVE-2014-0253

2014-02-1204:50:00
CWE-20
[email protected]
web.nvd.nist.gov
38
microsoft
.net framework
tcp
connection
vulnerability
denial of service
asp.net
http requests
nvd
cve-2014-0253

6.6 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.043 Low

EPSS

Percentile

92.2%

JSON

Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4, 4.5, and 4.5.1 does not properly determine TCP connection states, which allows remote attackers to cause a denial of service (ASP.NET daemon hang) via crafted HTTP requests that trigger persistent resource consumption for a (1) stale or (2) closed connection, as exploited in the wild in February 2014, aka β€œPOST Request DoS Vulnerability.”

Related

checkpoint_advisories 1
symantec 1
prion 1
seebug 1
mskb 1
openvas 2
nessus 1
securityvulns 1
kaspersky 1
checkpoint_advisories
checkpoint_advisories
Microsoft ASP.NET POST Request Denial of Service (MS14-009; CVE-2014-0253)
2014-03-11 00:00:00
symantec
symantec
Microsoft .NET Framework CVE-2014-0253 Remote Denial of Service Vulnerability
2014-02-11 00:00:00
prion
prion
Cross site request forgery (csrf)
2014-02-12 04:50:00
seebug
seebug
Microsoft .NET Framework θΏœη¨‹ζ‹’η»ζœεŠ‘ζΌζ΄ž(CVE-2014-0253)(MS14-009)
2014-02-12 00:00:00
mskb
mskb
MS14-009: Vulnerabilities in the .NET Framework could allow elevation of privilege: February 11, 2014
2014-02-11 00:00:00
openvas
openvas
Microsoft .NET Framework Multiple Vulnerabilities (2916607)
2014-02-12 00:00:00
Microsoft .NET Framework Multiple Vulnerabilities (2916607)
2014-02-12 00:00:00
nessus
nessus
MS14-009: Vulnerabilities in .NET Framework Could Allow Privilege Escalation (2916607)
2014-02-12 00:00:00
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2014-02-11 00:00:00
kaspersky
kaspersky
KLA10603 Multiple vulnerabilities in Microsoft .NET Framework
2014-11-11 00:00:00

6.6 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.043 Low

EPSS

Percentile

92.2%

JSON
Related for CVE-2014-0253
checkpoint_advisories1symantec1prion1seebug1mskb1openvas2nessus1securityvulns1kaspersky1