CVE-2011-3417
published 2011-12-30CVE-2011-3417: The Forms Authentication feature in the ASP.NET subsystem in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0, when sliding expiry is…
PriorityP258critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
35.73%
98.3th percentile
The Forms Authentication feature in the ASP.NET subsystem in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0, when sliding expiry is enabled, does not properly handle cached content, which allows remote attackers to obtain access to arbitrary user accounts via a crafted URL, aka "ASP.NET Forms Authentication Ticket Caching Vulnerability."
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| episerver | episerver_cms | — | — |
| episerver | episerver_cms | — | — |
| episerver | episerver_cms | — | — |
| episerver | episerver_cms | — | — |
| episerver | episerver_cms | — | — |
| episerver | episerver_cms | — | — |
| episerver | episerver_cms | — | — |
| episerver | episerver_cms | — | — |
| episerver | episerver_cms | — | — |
| microsoft | windows_server_2008 | — | — |
| microsoft | windows_xp | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-r38m-g3v3-7w4j: Unspecified vulnerability in EPiServer CMS 5 and 6 through 6R2, in certain configurations using Forms Authentication, allows remote authenticated user
ghsa_unreviewed·2022-05-17·CVSS 8.5
CVE-2012-1031 [HIGH] GHSA-r38m-g3v3-7w4j: Unspecified vulnerability in EPiServer CMS 5 and 6 through 6R2, in certain configurations using Forms Authentication, allows remote authenticated user
Unspecified vulnerability in EPiServer CMS 5 and 6 through 6R2, in certain configurations using Forms Authentication, allows remote authenticated users to obtain WebAdmins access by leveraging Edit Mode privileges, a different vulnerability than CVE-2011-3416 and CVE-2011-3417.
GHSA
GHSA-4wfc-x9hh-8qhv: The Forms Authentication feature in the ASP
ghsa_unreviewed·2022-05-13
CVE-2011-3417 [HIGH] GHSA-4wfc-x9hh-8qhv: The Forms Authentication feature in the ASP
The Forms Authentication feature in the ASP.NET subsystem in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0, when sliding expiry is enabled, does not properly handle cached content, which allows remote attackers to obtain access to arbitrary user accounts via a crafted URL, aka "ASP.NET Forms Authentication Ticket Caching Vulnerability."
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.securityfocus.com/bid/51203http://www.us-cert.gov/cas/techalerts/TA11-347A.htmlhttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-100https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14625http://www.securityfocus.com/bid/51203http://www.us-cert.gov/cas/techalerts/TA11-347A.htmlhttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-100https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14625
2011-12-30
Published