Signature Detail

HTTP: ASP.NET Forms Authentication Information Disclosure

This signature detects attempts to exploit a known vulnerability against ASP.NET. Remote authenticated attackers can obtain access to arbitrary user accounts via a crafted username.

Extended Description

Microsoft .NET Framework is prone to a authentication-bypass vulnerability in ASP.NET. An attacker can exploit this issue to gain unauthorized access to another users account. Successful exploits will allow attackers to execute arbitrary commands with the privileges of the targeted user.

Affected Products

• Avaya Aura Conferencing 6.0 Standard
• Avaya CallPilot 4.0
• Avaya CallPilot 5.0
• Avaya Communication Server 1000 Telephony Manager 3.0
• Avaya Communication Server 1000 Telephony Manager 4.0
• Avaya Meeting Exchange 5.0
• Avaya Meeting Exchange 5.0.0.0.52
• Avaya Meeting Exchange 5.0 SP1
• Avaya Meeting Exchange 5.0 SP2
• Avaya Meeting Exchange 5.1
• Avaya Meeting Exchange 5.1 SP1
• Avaya Meeting Exchange 5.2
• Avaya Meeting Exchange 5.2 SP1
• Avaya Meeting Exchange 5.2 SP2
• Avaya Meeting Exchange - Client Registration Server
• Avaya Meeting Exchange - Recording Server
• Avaya Meeting Exchange - Streaming Server
• Avaya Meeting Exchange - Web Conferencing Server
• Avaya Meeting Exchange - Webportal
• Avaya Messaging Application Server 4
• Avaya Messaging Application Server 5
• Avaya Messaging Application Server 5.2
• Microsoft .NET Framework 1.1
• Microsoft .NET Framework 1.1 SP1
• Microsoft .NET Framework 1.1 SP2
• Microsoft .NET Framework 1.1 SP3
• Microsoft .NET Framework 2.0
• Microsoft .NET Framework 2.0 SP1
• Microsoft .NET Framework 2.0 SP2
• Microsoft .NET Framework 3.5
• Microsoft .NET Framework 3.5 SP1
• Microsoft .NET Framework 4.0

References

• BugTraq: 51201
• CVE: CVE-2011-3416