Security Update for Microsoft .NET Framework 4 on Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2 (KB2978125) x86 based systems

Risk Information

Base Score

9.8

MODERATE

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

37.747%

CVE Information

Source CVE
CVE-2014-4149

Associated CVE
CVE-2014-4149

Patch Details

Patch associated with this vulnerability is supported by ManageEngine.

Patch ID
16461

Patch Description
Security Update for Microsoft .NET Framework 4 on Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2 (KB2978125)

References

http://blogs.technet.com/b/srd/archive/2014/11/11/ms14-072-net-remoting-elevation-of-privilege-vulnerability.aspx
http://technet.microsoft.com/security/bulletin/MS14-072
http://www.securitytracker.com/id/1031188