Vulnerability CVE-2010-1459

Vulnerability CVE-2010-1459

Published: 2010-05-27 Modified: 2012-02-13

Description:

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
MONO -> MONO

http://www.securityfocus.com/bid/40351

http://www.mono-project.com/Vulnerabilities#ASP.NET_View_State_Cross-Site_Scripting

http://www.communities.hp.com/securitysoftware/blogs/spilabs/archive/2010/04/29/asp-net-cross-site-scripting-followup-mono.aspx

http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html

http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html

http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html