|
|
Family: Windows : Microsoft Bulletins --> Category: infos
Vulnerabilities in ASP.NET could allow information disclosure (917283) Vulnerability Scan
Vulnerability Scan Summary
Acertains the version of the ASP.Net DLLs
Detailed Explanation for this Vulnerability Test
Synopsis :
A possible hacker may bypass ASP.NET security to gain unauthorized access to objects
in the remote application folder.
Description :
The remote host is running a version of the ASP.NET framework which contains
a flaw which may allow a possible hacker to bypass the security of an ASP.NET website
by accessing protected objects by their explicit names.
Solution :
Microsoft has released a set of patches for Windows 2000, XP and 2003 :
http://www.microsoft.com/technet/security/bulletin/ms06-033.mspx
Threat Level:
Low / CVSS Base Score : 2.3
(AV:R/AC:L/Au:NR/C:P/I:N/A:N/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|
