The System.Web class in the XSP for ASP.NET server 1.1 up to and including 2.0 in Mono does not properly verify local pathnames, which allows remote malicious users to (1) read source code by appending a space (%20) to a URI, and (2) read credentials via a request for Web.Config%20.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mono xsp 1.2.1 |
||
mono xsp 2.0 |
||
mono xsp 1.1 |