← Retour aux CVEs
CVE-2015-6096
N/ADescription
The XML DTD parser in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, 4.5.2, and 4.6 allows remote attackers to read arbitrary files via an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka ".NET Information Disclosure Vulnerability."
Details CVE
Score CVSS v3.1N/A
Publie11/11/2015
Derniere modification4/12/2025
Sourcenvd
Observations honeypot0
Produits affectes
microsoft:.net_framework
Faiblesses (CWE)
CWE-200
References
http://www.securitytracker.com/id/1034116(secure@microsoft.com)
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-118(secure@microsoft.com)
http://www.securitytracker.com/id/1034116(af854a3a-2127-422b-91ae-364da2661108)
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-118(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.