Vulnerability identifier: #VU3084

Vulnerability risk: High

CVSSv3.1: 7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:F/RL:O/RC:C]

CVE-ID: CVE-2010-3332

CWE-ID: CWE-310

Exploitation vector: Network

Exploits in database: 3

• March 18, 2020
  • Microsoft ASP.NET - Auto-Decryptor File Download Exploit (MS10-070) [Exploit-DB]
  • Microsoft ASP.NET - Padding Oracle File Download (MS10-070) [Exploit-DB]
  • Microsoft ASP.NET - Padding Oracle (MS10-070) [Exploit-DB]

Impact: Information disclosure

Vulnerable software:
Microsoft .NET Framework
Server applications / Frameworks for developing and running applications

Vendor: Microsoft