CVE-2014-4072

Name of the Vulnerable Software and Affected Versions Microsoft .NET Framework versions 1.1 SP1 through 4.5.2

Description The issue is related to the improper use of a hash table for request data, allowing remote attackers to cause a denial of service via crafted requests. This can lead to resource consumption and performance degradation. An attacker can exploit this by sending a small number of specially crafted requests to a .NET server, causing significant performance degradation and a denial of service condition.

Recommendations For Microsoft .NET Framework versions 1.1 SP1 through 4.5.2, consider implementing measures to restrict the impact of specially crafted requests on server performance, such as limiting the number of concurrent requests or implementing rate limiting. As a temporary workaround, consider restricting access to sensitive resources until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.