Intrusion PreventionMS.NET.Framework.Internationalized.URI.Parsing.Heap.Corruption
Description
This indicates an attack attempt to exploit a heap corruption vulnerability in Microsoft .Net Framework.
The vulnerability is caused by an error that occurs when the vulnerable application tries to parse a malformed URI. A remote attack may exploit this to execute arbitrary code on the affected system.
Affected Products
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.5
Microsoft .NET Framework 3.5.1
Microsoft .NET Framework 4
Microsoft .NET Framework 4.5/4.5.1/4.5.2
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
http://technet.microsoft.com/security/bulletin/MS14-057
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2020-12-22 | 16.984 | Name:MS. NET. Internationalized. URI. Parsing. Heap. Corruption:MS. NET. Framework. Internationalized. URI. Parsing. Heap. Corruption |
| ID | 39379 |
| Created | Oct 14, 2014 |
| Updated | Mar 26, 2022 |
| Risk |
|
| CVE ID | CVE-2014-4121 |
| Exploit Prediction Score | 92.62% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | Other |