Lucene search
K

4 matches found

CVE
CVE
added 2015/04/14 8:0 p.m.136 views

CVE-2015-1648

The CVE-2015-1648 issue is an information-disclosure vulnerability in Microsoft .NET Framework’s ASP.NET when customErrors is disabled. The root cause is improper handling/sanitization of errors, allowing remote attackers to trigger requests that reveal parts of web configuration files. Affected ...

2.6CVSS5.8AI score0.34855EPSS
Exploits0References2Affected Software1
Check Point Advisories
Check Point Advisories
added 2015/04/14 12:0 a.m.6 views

Microsoft ASP.NET Information Disclosure (MS15-041; CVE-2015-1648)

An information disclosure vulnerability exists in Microsoft .NET Framework. The vulnerability is due to improper requests sanitization on servers with error messages disabled. A remote attacker can exploit this vulnerability by sending specially crafted requests to the vulnerable server...

2.6CVSS5.7AI score0.34855EPSS
Exploits0
Kaspersky
Kaspersky
added 2015/04/14 12:0 a.m.62 views

KLA10556 Obtain sensitive information vulnerability in .NET Framework

An unspecified vulnerability was found in Microsoft .NET. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a specially designed request. Original advisories MS15-041 CVE-2015-1648 Related products...

2.6CVSS6.3AI score0.34855EPSS
Exploits0References20
Tenable Nessus
Tenable Nessus
added 2015/04/14 12:0 a.m.382 views

MS15-041: Vulnerability in .NET Framework Could Allow Information Disclosure (3048010)

The remote Windows host has a version of the Microsoft .NET Framework installed that is affected by an information disclosure vulnerability due to improper handling of requests on web servers that have custom error messages disabled. A remote, unauthenticated attacker can exploit this issue, via ...

2.6CVSS5.6AI score0.34855EPSS
Exploits0References2
Rows per page
Query Builder