6 matches found
CVE-2011-3415
Open redirect vulnerability in the Forms Authentication feature in the ASP.NET subsystem in Microsoft .NET Framework 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted return URL, aka "Insecure Redirect in...
Microsoft .NET Framework Remote Code Execution Vulnerability (2538814)
This host is missing a critical security update according to Microsoft Bulletin MS11-044. OpenVAS Vulnerability Test $Id: secpodms11-044.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft .NET Framework Remote Code Execution Vulnerability 2538814 Authors: Sooraj KS Copyright: Copyright c 2011 SecPod,...
Microsoft .NET Common Language Runtime Remote Code Execution Vulnerability (2265906)
This host is missing a critical security update according to Microsoft Bulletin MS10-060. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
CVE-2009-1536
ASP.NET in Microsoft .NET Framework 2.0 SP1 and SP2 and 3.5 Gold and SP1, when ASP 2.0 is used in integrated mode on IIS 7.0, does not properly manage request scheduling, which allows remote attackers to cause a denial of service daemon outage via a series of crafted HTTP requests, aka "Remote...
CVE-2006-3436
Cross-site scripting XSS vulnerability in Microsoft .NET Framework 2.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving "ASP.NET controls that set the AutoPostBack property to true"...
CVE-2006-3436
CVE-2006-3436 is a Microsoft .NET Framework 2.0 ASP.NET XSS vulnerability. The flaw affects ASP.NET controls that set AutoPostBack to true, allowing an attacker to inject client-side script via HTTP requests and potentially cause information disclosure or browser-side actions. Exploitation report...