MS14-053: Vulnerability in .NET Framework Could Allow Denial of Service (2990931)
Medium Nessus Plugin ID 77573
SynopsisThe version of the .NET Framework installed on the remote host is affected by a denial of service vulnerability.
DescriptionThe remote Windows host has a version of the Microsoft .NET Framework that is affected by a vulnerability that allows a remote attacker to cause a denial of service by sending specially crafted requests to an ASP.NET web application running on the affected system.
Note that ASP.NET is not installed by default and ASP.NET must be registered and enabled for the host to be affected.
SolutionMicrosoft has released a set of patches for .NET Framework 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4.0, 4.5, 4.5.1, and 4.5.2.