Mono 'EnableViewStateMac' Cross-Site Scripting Weakness

Mono is prone a cross-site scripting weakness.

The issue may allow attackers to perform cross-site scripting attacks. The attacker may carry out cross-site scripting attacks to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.

The issue affects versions prior to Mono 2.6.4.


Privacy Statement
Copyright 2010, SecurityFocus