Check: 2016-A-0349
Windows 2012 IAVM:
2016-A-0349
(in version v1 r30)
Title
Microsoft .NET Framework Information Disclosure Vulnerability (MS16-155) (Cat II impact)
Discussion
Microsoft has released a security bulletin addressing a vulnerability in .NET Framework. To exploit this vulnerability, an attacker could access the incorrectly encrypted data could attempt to decrypt the data using an easily guessable key. If successfully exploited, this vulnerability could allow an attacker to access information that should be defended by the Always Encrypted feature..
Check Content
Fix Text
Additional Identifiers
Rule ID:
Vulnerability ID: V-72779
Group Title:
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |