TypeFilterLevel Vulnerability

CVE-2014-1806 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The .NET Remoting implementation in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4, 4.5, and 4.5.1 does not properly restrict memory access, which allows remote attackers to execute arbitrary code via vectors involving malformed objects, aka "TypeFilterLevel Vulnerability."

Learn more about our Web Application Penetration Testing UK.