Microsoft .Net Form Authentication Insecure Redirect (MS11-100; CVE-2011-3415)
| Check Point Reference: | CPAI-2011-602 | |
| Date Published: | ||
| Severity: | ||
| Source: | Microsoft Security Bulletin MS11-100 | |
| Industry Reference(s): | CVE-2011-3415 | |
| Protection Provided by: |
Security Gateway
|
|
| Who is Vulnerable? Microsoft .NET Framework 2.0 Service Pack 2 when installed on Windows XP Service Pack 3 Microsoft .NET Framework 2.0 Service Pack 2 when installed on Windows XP Professional x64 Edition Service Pack 2 Microsoft .NET Framework 2.0 Service Pack 2 when installed on Windows Server 2003 Service Pack 2 Microsoft .NET Framework 2.0 Service Pack 2 when installed on Windows Server 2003 x64 Edition Service Pack 2 Microsoft .NET Framework 2.0 Service Pack 2 when installed on Windows Server 2003 with SP2 for Itanium-based Systems Microsoft .NET Framework 2.0 Service Pack 2 when installed on Windows Vista Service Pack 2 Microsoft .NET Framework 2.0 Service Pack 2 when installed on Windows Vista x64 Edition Service Pack 2 Microsoft .NET Framework 2.0 Service Pack 2 when installed on Windows Server 2008 for 32-bit Systems Service Pack 2 Microsoft .NET Framework 2.0 Service Pack 2 when installed on Windows Server 2008 for x64-based Systems Service Pack 2 Microsoft .NET Framework 2.0 Service Pack 2 when installed on Windows Server 2008 for Itanium-based Systems Service Pack 2 Microsoft .NET Framework 3.5 Service Pack 1 when installed on Windows XP Service Pack 3 Microsoft .NET Framework 3.5 Service Pack 1 when installed on Windows XP Professional x64 Edition Service Pack 2 Microsoft .NET Framework 3.5 Service Pack 1 when installed on Windows Server 2003 Service Pack 2 Microsoft .NET Framework 3.5 Service Pack 1 when installed on Windows Server 2003 x64 Edition Service Pack 2 Microsoft .NET Framework 3.5 Service Pack 1 when installed on Windows Server 2003 with SP2 for Itanium-based Systems Microsoft .NET Framework 3.5 Service Pack 1 when installed on Windows Vista Service Pack 2 Microsoft .NET Framework 3.5 Service Pack 1 when installed on Windows Vista x64 Edition Service Pack 2 Microsoft .NET Framework 3.5 Service Pack 1 when installed on Windows Server 2008 for 32-bit Systems Service Pack 2 Microsoft .NET Framework 3.5 Service Pack 1 when installed on Windows Server 2008 for x64-based Systems Service Pack 2 Microsoft .NET Framework 3.5 Service Pack 1 when installed on Windows Server 2008 for Itanium-based Systems Service Pack 2 Microsoft .NET Framework 3.5.1 on Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems Service Pack 1 Microsoft .NET Framework 3.5.1 on Windows 7 for x64-based Systems and Windows 7 for x64-based Systems Service Pack 1 Microsoft .NET Framework 3.5.1 on Windows Server 2008 R2 for x64-based Systems and Windows Server 2008 R2 for x64-based Systems Service Pack 1 Microsoft .NET Framework 3.5.1 on Windows Server 2008 R2 for Itanium-based Systems and Windows Server 2008 R2 for Itanium-based Systems Service Pack 1 Microsoft .NET Framework 4.0 on Windows XP Service Pack 3 Microsoft .NET Framework 4.0 on Windows XP Professional x64 Edition Service Pack 2 Microsoft .NET Framework 4.0 on Windows Server 2003 Service Pack 2 Microsoft .NET Framework 4.0 on Windows Server 2003 x64 Edition Service Pack 2 Microsoft .NET Framework 4.0 on Windows Server 2003 with SP2 for Itanium-based Systems Microsoft .NET Framework 4.0 on Windows Vista Service Pack 2 Microsoft .NET Framework 4.0 on Windows Vista x64 Edition Service Pack 2 Microsoft .NET Framework 4.0 on Windows Server 2008 for 32-bit Systems Service Pack 2 Microsoft .NET Framework 4.0 on Windows Server 2008 for x64-based Systems Service Pack 2 Microsoft .NET Framework 4.0 on Windows Server 2008 for Itanium-based Systems Service Pack 2 Microsoft .NET Framework 4.0 on Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems Service Pack 1 Microsoft .NET Framework 4.0 on Windows 7 for x64-based Systems and Windows 7 for x64-based Systems Service Pack 1 Microsoft .NET Framework 4.0 on Windows Server 2008 R2 for x64-based Systems Microsoft .NET Framework 4.0 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 Microsoft .NET Framework 4.0 on Windows Server 2008 R2 for Itanium-based Systems and Windows Server 2008 R2 for Itanium-based Systems Service Pack 1 | ||
| Vulnerability Description A spoofing vulnerability has been reported in Microsoft .NET Framework. |
||
|
Vulnerability Details The vulnerability is due to an error in the way .NET Framework verifies return URLs during the forms authentication process. A remote attacker may exploit this vulnerability by enticing users to open a malicious link. Successful exploitation would allow an attacker to redirect users to a website of the attacker's choosing. The attacker may then perform a phishing attack to gain information that was not meant to be disclosed. |
Protection Overview
IPS will detect and block malicious URLs.
In order for the protection to be activated, update your product to the latest update. For information on how to update , go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.