|
Family: Windows --> Category: infos
Vulnerabilities in ASP.NET could allow information disclosure (922770) (network check) Vulnerability Scan
Vulnerability Scan Summary Acertains the version of the ASP.Net DLLs via HTTP
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote .Net Framework is vulnerable to a cross site scripting attack.
Description :
The remote host is running a version of the ASP.NET framework which contains
contains a cross site scripting vulnerability which could allow a possible hacker
to execute arbitrary code in the browser of the users visiting the remote
web site.
Solution :
Microsoft has released a set of patches for Windows 2000, XP and 2003 :
http://www.microsoft.com/technet/security/bulletin/ms06-056.mspx
Threat Level:
High / CVSS Base Score : 7.0
(AV:R/AC:L/Au:NR/C:P/I:P/A:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|