5 matches found
Microsoft ASP.NET Core Elevation Of Privilege Vulnerability
This host is missing an important security update according to Microsoft advisory CVE-2017-11879. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-on...
Security Update ASP .NET Core September 2017
The remote Windows host has an installation of ASP.NET Core runtime package store with a version less than 2.0.12219.0. Therefore the host is affected by multiple vulnerabilities : - An open redirect vulnerability that can lead to an escalation of privilege. CVE-2017-11879 - A flaw that is...
CVE-2017-11879
ASP.NET Core 2.0 allows an attacker to steal log-in session information such as cookies or authentication tokens via a specially crafted URL aka "ASP.NET Core Elevation Of Privilege Vulnerability"...
CVE-2017-11879
ASP.NET Core 2.0 allows an attacker to steal log-in session information such as cookies or authentication tokens via a specially crafted URL aka "ASP.NET Core Elevation Of Privilege Vulnerability"...
CVE-2017-11879
CVE-2017-11879 affects ASP.NET Core 2.0. The vulnerability allows an attacker to steal login session information (cookies or authentication tokens) via a specially crafted URL, described as an Elevation of Privilege in ASP.NET Core. The affected component is ASP.NET Core 2.0 runtime; root cause i...