CVE-2014-4121

Name of the Vulnerable Software and Affected Versions Microsoft .NET Framework versions 2.0 SP2 through 4.5.2

Description A remote code execution issue exists due to the improper handling of internationalized resource identifiers. This allows an attacker to gain complete control over the system, enabling them to install programs, view, change, or delete data, and create new accounts with full user rights. Users with limited system rights are less affected than those operating with administrative rights.

Recommendations For Microsoft .NET Framework versions 2.0 SP2 through 4.5.2, update to a version that includes the fix for this issue to prevent remote code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.