CVE-2014-4149 Information

Description

Microsoft .NET Framework 1.1 SP1 2.0 SP2 3.5 3.5.1 4 4.5 4.5.1 and 4.5.2 does not properly perform TypeFilterLevel checks which allows remote attackers to execute arbitrary code via crafted data to a .NET Remoting endpoint aka \TypeFilterLevel Vulnerability.\

Reference

http://blogs.technet.com/b/srd/archive/2014/11/11/ms14-072-net-remoting-elevation-of-privilege-vulnerability.aspx http://www.securitytracker.com/id/1031188 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-072