MS14-053 - Important: Vulnerability in .NET Framework Could Allow Denial of Service (2990931)

	MS14-053 - Important: Vulnerability in .NET Framework

Severity Rating: Important
Revision Note: V1.1 (September 17, 2014): V1.1 (September 17, 2014): Bulletin revised to clarify language in the Executive Summary, Mitigating Factors, and Vulnerability FAQ sections that describes the attack vector for CVE-2014-4072. This is an informational change only. Customers who have already successfully installed the update do not have to take any action.
Summary: This security update resolves one privately reported vulnerability in Microsoft .NET Framework. The vulnerability could allow denial of service if an attacker sends a small number of specially crafted requests to an affected .NET-enabled website. By default, ASP.NET is not installed when Microsoft .NET Framework is installed on any supported edition of Microsoft Windows. To be affected by the vulnerability, customers must manually install and enable ASP.NET by registering it with IIS.

- View Microsoft Security Bulletin MS14-053
- View Microsoft Knowledge Base Article - on: 1.
- Visit Microsoft Corporation

Posted: September 17, 2014 | By: Wissen Schwamm

Recent Microsoft related news.

MS14-085 - Important: Vulnerability in Microsoft Graphics Component Could Allow Information Disclosure (3013126) - Version: 1.1

MS16-123 - Important: Security Update for Windows Kernel-Mode Drivers (3192892) - Version: 3.0

MS16-087 - Critical: Security Update for Windows Print Spooler Components (3170005) - Version: 2.0

MS16-095 - Critical: Cumulative Security Update for Internet Explorer (3177356) - Version: 3.0

MS16-039 - Critical: Security Update for Microsoft Graphics Component (3148522) - Version: 4.0

+ View more Microsoft related news +

			More Technical Information Than You Can Handle.