CVE-2010-4225

high

Description

Unspecified vulnerability in the mod_mono module for XSP in Mono 2.8.x before 2.8.2 allows remote attackers to obtain the source code for .aspx (ASP.NET) applications via unknown vectors related to an "unloading bug."

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/64532

http://www.vupen.com/english/advisories/2011/0051

http://www.securityfocus.com/bid/45711

http://www.mono-project.com/Vulnerabilities#XSP.2Fmod_mono_source_code_disclosure

http://secunia.com/advisories/42842

http://osvdb.org/70312

Details

Source: Mitre, NVD

Published: 2011-01-11

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High