The __VIEWSTATE functionality in Microsoft ASP.NET 1.x, when not cryptographically signed, allows remote malicious users to cause a denial of service (CPU consumption) via deeply nested markup.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft asp.net 1.0 |
||
microsoft asp.net 1.1 |