3 matches found
CVE-2015-6096
CVE-2015-6096 affects Microsoft .NET Framework 2.0 SP2 onward to 4.6. The root cause is an XML DTD parser vulnerability that allows an external entity declaration to be processed with an entity reference, enabling an attacker to read local files (XXE information disclosure). The connected advisor...
Microsoft .NET Framework CVE-2015-6096 XML Handling Information Disclosure Vulnerability
Description The Microsoft .NET Framework is prone to a remote information-disclosure vulnerability. Attackers can exploit this issue to gain access to sensitive information that may aid in further attacks. Technologies Affected Microsoft .NET Framework 2.0 SP2 Microsoft .NET Framework 3.5 Microso...
Microsoft .NET Information Disclosure (MS15-118: CVE-2015-6096)
An information disclosure vulnerability exists in Microsoft .NET Framework. The specific vulnerability involves DTD problem in the underlying calls to XmlParser. An attacker who successfully exploited this vulnerability could gain read access to local files on the target system...