Lucene search
Ubuntu.comUB:CVE-2012-3382HistoryJul 12, 2012 - 12:00 a.m.
CVE-2012-3382
2012-07-1200:00:00
ubuntu.com
ubuntu.com
15
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
67.6%
Cross-site scripting (XSS) vulnerability in the ProcessRequest function in
mcs/class/System.Web/System.Web/HttpForbiddenHandler.cs in Mono 2.10.8 and
earlier allows remote attackers to inject arbitrary web script or HTML via
a file with a crafted name and a forbidden extension, which is not properly
handled in an error message.
Bugs
Related
prion
prion
Cross site scripting
2012-07-12 21:55:00
openvas
openvas
Mandriva Update for mono MDVSA-2012:140 (mono)
2012-10-25 00:00:00
SUSE: Security Advisory (SUSE-SU-2012:0928-1)
2021-06-09 00:00:00
Debian Security Advisory DSA 2512-1 (mono)
2012-08-10 00:00:00
debian
debian
[SECURITY] [DSA 2512-1] mono security update
2012-07-12 19:27:33
nessus
nessus
Debian DSA-2512-1 : mono - missing input sanitising
2012-07-18 00:00:00
Mandriva Linux Security Advisory : mono (MDVSA-2012:140)
2012-09-06 00:00:00
SuSE 11.2 Security Update : Mono (SAT Patch Number 6543)
2013-01-25 00:00:00
cve
cve
CVE-2012-3382
2012-07-12 21:55:00
debiancve
debiancve
CVE-2012-3382
2012-07-12 21:55:00
securityvulns
securityvulns
[SECURITY] [DSA 2512-1] mono security update
2012-07-16 00:00:00
[ MDVSA-2012:140 ] mono
2012-09-03 00:00:00
osv
osv
mono - missing input sanitising
2012-07-12 00:00:00
ubuntu
ubuntu
Mono vulnerabilities
2012-07-25 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
67.6%
Related for UB:CVE-2012-3382