Vulnerability   
Search   
    Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2012-3382
Description:Cross-site scripting (XSS) vulnerability in the ProcessRequest function in mcs/class/System.Web/System.Web/HttpForbiddenHandler.cs in Mono 2.10.8 and earlier allows remote attackers to inject arbitrary web script or HTML via a file with a crafted name and a forbidden extension, which is not properly handled in an error message.
Test IDs: 1.3.6.1.4.1.25623.1.0.71488   1.3.6.1.4.1.25623.1.0.72110   1.3.6.1.4.1.25623.1.0.831723   1.3.6.1.4.1.25623.1.1.4.2012.0928.1  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2012-3382
http://www.mandriva.com/security/advisories?name=MDVSA-2012:140
https://bugzilla.novell.com/show_bug.cgi?id=769799
http://www.openwall.com/lists/oss-security/2012/07/06/11
SuSE Security Announcement: openSUSE-SU-2012:0974 (Google Search)
https://hermes.opensuse.org/messages/15374367




© 1998-2021 E-Soft Inc. All rights reserved.