Make Homepage | Add To Favorites | Print Page | Submit News | Feedback | Contact | 

Your Technical Computer Information Resource!  
     
  Technical Updates @ TACKtech Corp.  

10.14.2014 - MS14-057 - Critical: Vulnerabilities in .NET Framework Could Allow Remote Code Execution (3000414) - Version: 1.0



View Microsoft related news. Severity Rating: Critical
Revision Note: V1.0 (October 14, 2014): Bulletin published.
Summary: This security update resolves three privately reported vulnerabilities in Microsoft .NET Framework. The most severe of the vulnerabilities could allow remote code execution if an attacker sends a specially crafted URI request containing international characters to a .NET web application, causing ASP.NET to generate incorrectly constructed URIs. In .NET 4.0 applications, the vulnerable functionality (iriParsing) is disabled by default; for the vulnerability to be exploitable an application has to explicitly enable this functionality. In .NET 4.5 applications, iriParsing is enabled by default and cannot be disabled.

- View Microsoft Security Bulletin MS14-057
- View Microsoft Knowledge Base Article - on: 1.
- Visit Microsoft Corporation

NID: 51456 / Submitted by: The Zilla of Zuron
Categories: Microsoft
Most recent Microsoft related news.
MS16-140 - Important: Security Update for Boot Manager (3193479) - Version: 1.1
MS16-130 - Critical: Security Update for Microsoft Windows (3199172) - Version: 1.1
MS16-134 - Important: Security Update for Common Log File System Driver (3193706) - Version: 1.0
MS16-141 - Critical: Security Update for Adobe Flash Player (3202790) - Version: 1.0
MS16-132 - Critical: Security Update for Microsoft Graphics Component (3199120) - Version: 1.0
View archive of Microsoft related news.

Visit the TACKtech Shop
  Popular Tech News  
  Most Viewed News  
  Top Affiliates  
........