QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2011-3415

Back to search

CVE-2011-3415

Published: Dec 30, 2011

Modified: Aug 6, 2024

PUBLISHED

Description

Open redirect vulnerability in the Forms Authentication feature in the ASP.NET subsystem in Microsoft .NET Framework 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted return URL, aka "Insecure Redirect in .NET Form Authentication Vulnerability."

VendorProductVersions

n/a

n/a

affected
n/a

References

JVN#71256611
third-party-advisory
x_refsource_JVN
oval:org.mitre.oval:def:14815
vdb-entry
signature
x_refsource_OVAL
MS11-100
vendor-advisory
x_refsource_MS
51202
vdb-entry
x_refsource_BID
JVNDB-2011-003557
third-party-advisory
x_refsource_JVNDB

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now