Thursday, September 23, 2010

Rule Release for Today, Thursday September 23rd, 2010

Microsoft .NET Framework Information Disclosure (CVE-2010-3332):
The Microsoft .NET Framework discloses enough information in error responses that an attacker is able to decrypt and modify encrypted data. The attacker is also able to forge cookies and obtain application files via an Oracle padding attack.

Get some:

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.