[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Elevation of Privilege vulnerabilities in Microsoft .NET Framework - MS11-100

ID: oval:org.secpod.oval:def:3633Date: (C)2011-12-30   (M)2023-12-14
Class: PATCHFamily: windows




The host is missing a critical security update according to Microsoft security bulletin, MS11-100. The update is required to fix multiple elevation of privilege vulnerabilities. The flaws are present in the applications, which fail to properly handle the Forms Authentication feature in ASP.NET subsystem. Successful exploitation allows attackers to cause denial of service or redirect users to arbitrary web sites.

Platform:
Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows Server 2008 R2
Microsoft Windows XP
Product:
Microsoft .NET Framework
Reference:
MS11-100
CVE-2011-3417
CVE-2011-3416
CVE-2011-3415
CVE-2011-3414
CVE    4
CVE-2011-3414
CVE-2011-3415
CVE-2011-3416
CVE-2011-3417
...
CPE    29
cpe:/o:microsoft:windows_server_2008:r2:sp1:x64
cpe:/o:microsoft:windows_7::sp1:x64
cpe:/o:microsoft:windows_7::sp1:x86
cpe:/o:microsoft:windows_xp::sp3:x86
...
XCCDF    9
xccdf_com.secpod_benchmark_microsoft-windows-2000
xccdf_com.secpod_benchmark_microsoft-windows-server-2008
xccdf_scaprepo.com_benchmark_microsoft-windows-server-2008-r2
xccdf_com.secpod_benchmark_microsoft-windows-server-2003
...

© SecPod Technologies