Lucene search
HistoryAug 12, 2014 - 9:55 p.m.
CVE-2014-4062
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
5.9 Medium
AI Score
Confidence
Low
0.087 Low
EPSS
Percentile
94.6%
Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, and 3.5.1 does not properly implement the ASLR protection mechanism, which allows remote attackers to obtain sensitive address information via a crafted web site, aka “.NET ASLR Vulnerability.”
Affected configurations
Node
microsoft.net_frameworkMatch1.1sp1
ORmicrosoft.net_frameworkMatch2.0sp2
ORmicrosoft.net_frameworkMatch3.0sp2
ORmicrosoft.net_frameworkMatch3.5
ORmicrosoft.net_frameworkMatch3.5.1
Related
symantec
symantec
Microsoft .NET Framework CVE-2014-4062 ASLR Security Bypass Vulnerability
2014-08-12 00:00:00
prion
prion
Security feature bypass
2014-08-12 21:55:00
cvelist
cvelist
CVE-2014-4062
2014-08-12 21:00:00
cve
cve
CVE-2014-4062
2014-08-12 21:55:07
mskb
mskb
nessus
nessus
openvas
openvas
Microsoft .NET Framework Security Bypass Vulnerability (2984625)
2014-08-13 00:00:00
kaspersky
kaspersky
KLA10603 Multiple vulnerabilities in Microsoft .NET Framework
2014-11-11 00:00:00
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2014-09-15 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
5.9 Medium
AI Score
Confidence
Low
0.087 Low
EPSS
Percentile
94.6%
Related for NVD:CVE-2014-4062