Lucene search
PRIOn knowledge basePRION:CVE-2014-4122HistoryOct 15, 2014 - 10:55 a.m.
Design/Logic Flaw
2014-10-1510:55:00
PRIOn knowledge base
www.prio-n.com
10
6.5 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.019 Low
EPSS
Percentile
88.6%
Microsoft .NET Framework 2.0 SP2, 3.5, and 3.5.1 omits the ASLR protection mechanism, which allows remote attackers to obtain potentially sensitive information about memory addresses by leveraging the predictability of an executable image’s location, aka “.NET ASLR Vulnerability.”
| CPE | Name | Operator | Version |
|---|---|---|---|
| .net_framework | eq | 2.0 sp2 | |
| .net_framework | eq | 3.5 | |
| .net_framework | eq | 3.5.1 |
Related
cvelist
cvelist
CVE-2014-4122
2014-10-15 10:00:00
symantec
symantec
Microsoft .NET Framework CVE-2014-4122 ASLR Security Bypass Vulnerability
2014-10-14 00:00:00
nvd
nvd
CVE-2014-4122
2014-10-15 10:55:07
cve
cve
CVE-2014-4122
2014-10-15 10:55:07
openvas
openvas
Microsoft .NET Framework Remote Code Execution Vulnerability (3000414)
2014-10-15 00:00:00
nessus
nessus
mskb
mskb
kaspersky
kaspersky
KLA10603 Multiple vulnerabilities in Microsoft .NET Framework
2014-11-11 00:00:00
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2014-10-15 00:00:00
6.5 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.019 Low
EPSS
Percentile
88.6%
Related for PRION:CVE-2014-4122