Published: 22/09/2010 Updated: 23/11/2020

CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10

VMScore: 655

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N

Microsoft .NET Framework 1.1 SP1, 2.0 SP1 and SP2, 3.5, 3.5 SP1, 3.5.1, and 4.0, as used for ASP.NET in Microsoft Internet Information Services (IIS), provides detailed error codes during decryption attempts, which allows remote malicious users to decrypt and modify encrypted View State (aka __VIEWSTATE) form data, and possibly forge cookies or read application files, via a padding oracle attack, aka "ASP.NET Padding Oracle Vulnerability."

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft .net_framework 1.1
microsoft .net_framework 2.0
microsoft .net_framework 3.5
microsoft .net_framework 3.5.1
microsoft .net_framework 4.0

#!/usr/bin/ruby -w # # aspx_po_chotext_attackrb # # Copyright (c) 2010 AmpliaSECURITY All rights reserved # # wwwampliasecuritycom # Agustin Azubel - aazubel@ampliasecuritycom # # # MS10-070 ASPX proof of concept # Decrypt data using Vaudenay's cbc-padding-oracle-side-channel # Encrypt data using Rizzo-Duong CBC-R techniqu ...

# Source: blogmindedsecuritycom/2010/10/breaking-net-encryption-with-or-withouthtml #!/usr/bin/perl # # # Webconfig Bruter - exploit tool for downloading Webconfig # # FOr use this script you need Pudbuster # Padbuster is a great tool and Brian Holyfield deserve all the credits # Note from Exploit-db: This very first exploit was m ...

#!/usr/bin/ruby -w # # aspx_ad_chotext_attackrb # # Copyright (c) 2010 AmpliaSECURITY All rights reserved # # wwwampliasecuritycom # Agustin Azubel - aazubel@ampliasecuritycom # # # MS10-070 ASPX proof of concept # Decrypt data using an auto decryptor bundled in the aspx framework # Encrypt data using Rizzo-Duong CBC-R techn ...

CVE-2010-3332 Oracle Padding Vulnerability in Microsoft ASP.NET

MS-10-070 CVE-2010-3332 Oracle Padding Vulnerability in Microsoft ASPNET

CWE-209 http://twitter.com/thaidn/statuses/24832350146 http://secunia.com/advisories/41409 http://securitytracker.com/id?1024459 http://weblogs.asp.net/scottgu/archive/2010/09/18/important-asp-net-security-vulnerability.aspx http://www.troyhunt.com/2010/09/fear-uncertainty-and-and-padding-oracle.html http://www.ekoparty.org/juliano-rizzo-2010.php http://www.securityfocus.com/bid/43316 http://isc.sans.edu/diary.html?storyid=9568 http://blogs.technet.com/b/srd/archive/2010/09/17/understanding-the-asp-net-vulnerability.aspx http://www.vupen.com/english/advisories/2010/2429 http://www.theinquirer.net/inquirer/news/1732956/security-researchers-destroy-microsoft-aspnet-security http://pentonizer.com/general-programming/aspnet-poet-vulnerability-what-else-can-i-do/http://www.dotnetnuke.com/Community/Blogs/tabid/825/EntryId/2799/Oracle-Padding-Vulnerability-in-ASP-NET.aspx http://threatpost.com/en_us/blogs/new-crypto-attack-affects-millions-aspnet-apps-091310 http://www.microsoft.com/technet/security/advisory/2416728.mspx http://www.vupen.com/english/advisories/2010/2751 http://www.mono-project.com/Vulnerabilities#ASP.NET_Padding_Oracle https://exchange.xforce.ibmcloud.com/vulnerabilities/61898 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12365 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-070 https://nvd.nist.gov https://github.com/bongbongco/MS10-070 https://www.exploit-db.com/exploits/15265/

CVE-2010-3332

Vulnerability Summary

Vulnerability Trend

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect