Microsoft .NET Framework ASP.NET Padding Oracle Information Disclosure Vulnerability

Microsoft .NET Framework is prone to an information-disclosure vulnerability in ASP.NET that affects SharePoint.

Successful exploits will allow attackers to decrypt and gain access to potentially sensitive data encrypted by the server or read data from arbitrary files within an ASP.NET application. Obtained information may aid in further attacks.

This issue affects Microsoft .NET Framework versions 4.0 and prior.


Privacy Statement
Copyright 2010, SecurityFocus