Oval Definition:	oval:org.mitre.oval:def:377
Revision Date: 2007-08-02 Version: 14 Title: Microsoft .NET Framework 2.0 Cross-Site Scripting Vulnerability Description: Cross-site scripting (XSS) vulnerability in Microsoft .NET Framework 2.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving "ASP.NET controls that set the AutoPostBack property to true". Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2006-3436 Platform(s): Microsoft Windows 2000 Microsoft Windows Server 2003 Microsoft Windows XP Product(s): Microsoft .NET Framework Definition Synopsis Microsoft .NET Framework 2.0 (Original RTM or later) is installed AND the version of System.web.dll is less than 2.0.50727.210
BACK