Microsoft .NET Framework CVE-2016-3255 XML External Entity Information Disclosure Vulnerability
|
Bugtraq ID:
|
91601
|
|
Class:
|
Design Error
|
|
CVE:
|
CVE-2016-3255
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Jul 12 2016 12:00AM
|
|
Updated:
|
Jul 12 2016 12:00AM
|
|
Credit:
|
Michael Weber, Henrique Arcoverde NCC Group
|
|
Vulnerable:
|
Microsoft Windows Vista x64 Edition SP2
Microsoft Windows Vista SP2
Microsoft Windows Server 2012 R2 0
Microsoft Windows Server 2012 0
Microsoft Windows Server 2008 R2 for x64-based Systems SP1
Microsoft Windows Server 2008 R2 for Itanium-based Systems SP1
Microsoft Windows Server 2008 for x64-based Systems SP2
Microsoft Windows Server 2008 for Itanium-based Systems SP2
Microsoft Windows Server 2008 for 32-bit Systems SP2
Microsoft Windows RT 8.1
Microsoft Windows 8.1 for x64-based Systems 0
Microsoft Windows 8.1 for 32-bit Systems 0
Microsoft Windows 7 for x64-based Systems SP1
Microsoft Windows 7 for 32-bit Systems SP1
Microsoft Windows 10 version 1511 for x64-based Systems 0
Microsoft Windows 10 version 1511 for 32-bit Systems 0
Microsoft Windows 10 for x64-based Systems 0
Microsoft Windows 10 for 32-bit Systems 0
Microsoft .NET Framework 4.5.1
Microsoft .NET Framework 3.5.1
Microsoft .NET Framework 4.6
Microsoft .NET Framework 4.5.2
Microsoft .NET Framework 3.5
Microsoft .NET Framework 2.0 SP2
|
|
|
|
Not Vulnerable:
|
|
|
