Vulnerabilities > Mono > Mono > 2.4.2.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-11-17 | CVE-2010-4159 | Local Privilege Escalation vulnerability in Mono 'loader.c' Library Loading Untrusted search path vulnerability in metadata/loader.c in Mono 2.8 and earlier allows local users to gain privileges via a Trojan horse shared library in the current working directory. local mono | 6.9 |
2010-05-27 | CVE-2010-1459 | Cross-Site Scripting vulnerability in Mono The default configuration of ASP.NET in Mono before 2.6.4 has a value of FALSE for the EnableViewStateMac property, which allows remote attackers to conduct cross-site scripting (XSS) attacks, as demonstrated by the __VIEWSTATE parameter to 2.0/menu/menu1.aspx in the XSP sample project. | 4.3 |