Check: 2016-B-0111
windows 7 iavm:
2016-B-0111
(in version v1 r32)
Title
Microsoft .NET Framework Information Disclosure Vulnerability (MS16-091) (Cat II impact)
Discussion
Microsoft has released a security bulletin addressing a vulnerability in .NET Framework. To exploit the vulnerability, an attacker could create specially crafted XML data and induce an application to parse and validate the XML data. If successfully exploited, this vulnerability could allow an attacker to read arbitrary files via an XML external entity declaration.
Check Content
Fix Text
Additional Identifiers
Rule ID:
Vulnerability ID: V-70445
Group Title:
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |