oval:org.mitre.oval:def:4987

Definition Id: oval:org.mitre.oval:def:4987

Oval ID:	oval:org.mitre.oval:def:4987
Title:	Microsoft .NET Framework v1.0 Security Bypass
Description:	The Microsoft .NET forms authentication capability for ASP.NET allows remote attackers to bypass authentication for .aspx files in restricted directories via a request containing a (1) "\" (backslash) or (2) "%5C" (encoded backslash), aka "Path Validation Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2004-0847	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003	Product(s):	Microsoft .NET Framework
Definition Synopsis:
Is the Microsoft .NET Framework 1.0 installed AND A vulnerable version of Microsoft .NET Framework v1.0 is installed. A vulnerable version of Microsoft .NET Framework v1.0 (SP 2) is installed. NOT Is the KB886905 patch installed for Microsoft .NET Framework v1.0 sp 2? AND the version of System.web.dll is less than 1.0.3705.556 AND Is Service Pack 2 for Microsoft .NET Framework 1.0 installed OR A vulnerable version of Microsoft .NET Framework v1.0 (SP 3) is installed. Is Service Pack 3 for Microsoft .NET Framework 1.0 installed AND the version of System.web.dll is less than 1.0.3705.6021 AND NOT Is the KB886906 patch installed for Microsoft .NET Framework v1.0 sp 3?