EUVD-2015-2413

Malware in sbrugna...

EUVD-2015-2411

Malware in sbrugna...

The vulnerability of the AuthenticodeDeformatter class in the Mono application development platform allows attackers to perform spoofing attacks.

The vulnerability of the AuthenticodeDeformatter class in the Mono application development platform is related to errors in the user interface’s information representation during the loading of the Mono.Security.dll library. Exploiting this vulnerability allows a malicious actor to perform spoofi...

DEBIAN-CVE-2015-2318

The TLS stack in Mono before 3.12.1 allows man-in-the-middle attackers to conduct message skipping attacks and consequently impersonate clients by leveraging missing handshake state validation, aka a "SMACK SKIP-TLS" issue...

[Backports-security-announce] Security Update for mono

Gerfried Fuchs uploaded new packages for mono which fixed the following security problems: CVE-CVE-2008-3422, Debian BTS 494406 Multiple cross-site scripting XSS vulnerabilities in the ASP.net class libraries in Mono 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML vi...

CVE-2006-6104

The System.Web class in the XSP for ASP.NET server 1.1 through 2.0 in Mono does not properly verify local pathnames, which allows remote attackers to 1 read source code by appending a space %20 to a URI, and 2 read credentials via a request for Web.Config%20...