Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2010-3332 PoC — Microsoft .NET Framework ASP.NET Padding Oracle攻击信息泄露漏洞

Source
https://github.com/bongbongco/MS10-070
Associated Vulnerability
Title:Microsoft .NET Framework ASP.NET Padding Oracle攻击信息泄露漏洞 (CVE-2010-3332)
Description:Microsoft .NET Framework 1.1 SP1, 2.0 SP1 and SP2, 3.5, 3.5 SP1, 3.5.1, and 4.0, as used for ASP.NET in Microsoft Internet Information Services (IIS), provides detailed error codes during decryption attempts, which allows remote attackers to decrypt and modify encrypted View State (aka __VIEWSTATE) form data, and possibly forge cookies or read application files, via a padding oracle attack, aka "ASP.NET Padding Oracle Vulnerability."
Description
CVE-2010-3332 Oracle Padding Vulnerability in Microsoft ASP.NET
Readme
# MS-10-070
CVE-2010-3332 Oracle Padding Vulnerability in Microsoft ASP.NET
File Snapshot

 [4.0K]  /data/pocs/0259de78f0dfbbb702e9be10481b8b6ea8a8b136
├── [ 16K]  aspx_po_chotext_attack.rb
└── [  76]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →