MS16-091: Description of the security update for the .NET Framework 3.5 in Windows 8.1 and Windows Server 2012 R2: July 12, 2016

MS16-091: Description of the security update for the .NET Framework 3.5 in Windows 8.1 and Windows Server 2012 R2: July 12, 2016 View products that this article applies to. Summary This update resolves a vulnerability in the Microsoft .NET Framework. The vulnerability could cause information...

MS16-091: Description of the security update for the .NET Framework 4.5.2 in Windows Vista Service Pack 2, Windows Server 2008 Service Pack 2, Windows 7 Service Pack 1, and Windows Server 2008 R2 Service Pack 1: July 12, 2016

MS16-091: Description of the security update for the .NET Framework 4.5.2 in Windows Vista Service Pack 2, Windows Server 2008 Service Pack 2, Windows 7 Service Pack 1, and Windows Server 2008 R2 Service Pack 1: July 12, 2016 View products that this article applies to. Summary This update resolve...

MS16-091: Description of the security update for the .NET Framework 3.5 in Windows Server 2012: July 12, 2016

MS16-091: Description of the security update for the .NET Framework 3.5 in Windows Server 2012: July 12, 2016 View products that this article applies to. Summary This update resolves a vulnerability in the Microsoft .NET Framework. The vulnerability could cause information disclosure if an attack...

MS16-091: Description of the security update for the .NET Framework 4.6 and 4.6.1 in Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2: July 12, 2016

MS16-091: Description of the security update for the .NET Framework 4.6 and 4.6.1 in Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2: July 12, 2016 November 8, 2016 A detection change was made to account for the .NET Framework 4.6.1 hotfix rollup for customers who were not being correctly...

MS16-091: Description of the security update for the .NET Framework 4.6 and 4.6.1 in Windows Server 2012: July 12, 2016

MS16-091: Description of the security update for the .NET Framework 4.6 and 4.6.1 in Windows Server 2012: July 12, 2016 November 8, 2016 A detection change was made to account for the .NET Framework 4.6.1 hotfix rollup for customers who were not being correctly offered this security update for th...

.NET Framework Information Disclosure Vulnerability

An information disclosure vulnerability exists when .NET Framework improperly parses XML input containing a reference to an external entity. An attacker who successfully exploited this vulnerability could read arbitrary files via an XML external entity declaration. To exploit the vulnerability, a...

MS16-091: Security update for the .NET Framework: July 12, 2016

Resolves a vulnerability in the Microsoft .NET Framework that could cause information disclosure if an attacker uploads a specially crafted XML file to a web-based application.View products that this article applies to.SummaryThis update resolves a vulnerability in the Microsoft .NET Framework. T...

KLA10841 OSI vulnerability in Microsoft Developer Tools

Information disclosure vulnerability was found in Microsoft Developer Tools. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2016-3255 Related products Microsoft-.NET-Framework CVE list CVE-2016-3255 critical KB list 3172985 3163912 3164024...

Microsoft .NET Framework CVE-2016-3255 XML External Entity Information Disclosure Vulnerability

Description The Microsoft .NET Framework is prone to an information-disclosure vulnerability. An attacker can exploit this issue to gain access to sensitive information. Successful exploits may lead to other attacks. Technologies Affected Microsoft .NET Framework 2.0 SP2 Microsoft .NET Framework...

MS16-091: Security Update for .NET Framework (3170048)

The remote Windows host is missing a security update. It is, therefore, affected by an information disclosure vulnerability in .NET Framework due to improper processing of XML input containing a reference to an external entity. An unauthenticated, remote attacker can exploit this, via specially...

The vulnerability in Microsoft.NET Framework software allows a malicious attacker to compromise the accessibility of protected information.

Vulnerability exists in Microsoft ASP.NET, allowing attackers to cause server failures in ASP.NET applications...

The vulnerability in Microsoft.NET Framework software allows a malicious attacker to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability exists in the Microsoft .NET Framework, which allows a malicious individual to elevate their privileges within the system...

PowerShell Runspace Portable Post Exploitation Tool: PowerOPS

PowerShell Runspace Portable Post Exploitation Tool aimed at making Penetration Testing with PowerShell “easier” PowerOPS is an application written in C that does not rely on powershell.exe but runs PowerShell commands and functions within a powershell runspace environment .NET. It intends to...

Microsoft .NET Framework TLS/SSL Information Disclosure Vulnerability

Microsoft .NET Framework is a comprehensive and consistent programming model developed by Microsoft Corporation USA and a development platform for building Windows, Windows Store, Windows Phone, Windows Server and Microsoft Azure Windows Store, Windows Phone, Windows Server, and Microsoft Azure...

CVE-2016-0149

Microsoft .NET Framework 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows man-in-the-middle attackers to obtain sensitive cleartext information via vectors involving injection of cleartext data into the client-server data stream, aka "TLS/SSL Information Disclosure Vulnerability."...

CVE-2016-0149

Microsoft .NET Framework 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows man-in-the-middle attackers to obtain sensitive cleartext information via vectors involving injection of cleartext data into the client-server data stream, aka "TLS/SSL Information Disclosure Vulnerability."...

Information disclosure

Microsoft .NET Framework 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows man-in-the-middle attackers to obtain sensitive cleartext information via vectors involving injection of cleartext data into the client-server data stream, aka "TLS/SSL Information Disclosure Vulnerability."...

CVE-2016-0149

Microsoft .NET Framework 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows man-in-the-middle attackers to obtain sensitive cleartext information via vectors involving injection of cleartext data into the client-server data stream, aka "TLS/SSL Information Disclosure Vulnerability."...

CVE-2016-0149

CVE-2016-0149 affects the Microsoft .NET Framework family (2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1). The issue is TLS/SSL information disclosure via injection of cleartext data into the client–server stream, enabling MiTM-style eavesdropping. Connected documents corroborate this TLS/SSL i...

Microsoft .NET Framework Information Disclosure Vulnerability (3156757)

This host is missing an important security update according to Microsoft Bulletin MS16-065. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...