MS14-072: Vulnerability in .NET Framework Could Allow Elevation of Privilege (3005210)

high Nessus Plugin ID 79132

Synopsis

The version of the .NET Framework installed on the remote host is affected by a privilege elevation vulnerability.

Description

The remote Windows host has a version of the Microsoft .NET Framework that is affected by a vulnerability related to how it handles TypeFilterLevel checks for some malformed objects. This can be used by a remote attacker to gain privilege elevation via a specially crafted packet sent to a host that is using .NET Remoting.

Solution

Microsoft has released a set of patches for .NET Framework 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4.0, 4.5, 4.5.1, and 4.5.2.

See Also

https://www.nessus.org/u?e3a3b608

Plugin Details

Severity: High

ID: 79132

File Name: smb_nt_ms14-072.nasl

Version: 1.12

Type: local

Agent: windows

Published: 11/12/2014

Updated: 5/15/2020

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 7.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:microsoft:.net_framework

Required KB Items: SMB/MS_Bulletin_Checks/Possible

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 11/11/2014

Vulnerability Publication Date: 11/11/2014

Reference Information

CVE: CVE-2014-4149

BID: 70979

IAVA: 2014-A-0173-S

MSFT: MS14-072

MSKB: 2978114, 2978116, 2978120, 2978121, 2978122, 2978124, 2978125, 2978126, 2978127, 2978128