OracleConnections

Oracle Community Network

MS10-070 ASP.NET Padding Oracle attack proof-of-concept exploit

This proof-of-concept exploit performs a Padding Oracle attack against a simple ASP.NET application (it can be any application) to download a file from the remote Web Server. In this example the proof-of-concept exploit downloads the Web.config file.

This proof of concept exploit can be found at http://www.ampliasecurity.com/research/aspx_po_chotext_attack.rb

0 members like this

Views: 100

Get Embed Code

Tags:

Comment

You need to be a member of OracleConnections to add comments!

Join OracleConnections

Welcome to
OracleConnections

Sign Up
or Sign In

Or sign in with:

Oracle Jobs in US

Groups

Oracle Apps Technical

2 members
2 Comments 1 Like
Oracle Business Intellig…

143 members
11 Comments 116 Likes

Oracle Community

289 members
0 Comments 199 Likes
Oracle OpenWorld

181 members
0 Comments 92 Likes

Oracle Recruitment Group

117 members
0 Comments 78 Likes

View All

Videos

Oracle Database11g tutorials 9 || What is archive log mode and how to enable archive log mode

Added by Val Brindley 0 Comments 2 Likes

Oracle Database11g tutorials 8 || SQL DISTINCT with multiple columns |SQL Distinct with Two columns

Added by Val Brindley 0 Comments 1 Like

Oracle Database11g tutorials 7 | |SQL DISTINCT keyword || SQL tutorials

Added by Val Brindley 0 Comments 1 Like

© 2024 Created by Maisam Agha. Powered by

Badges | Report an Issue | Terms of Service

#xg { position:relative;top:120px; } #xn_bar { top:120px; }

Hello, you need to enable JavaScript to use OracleConnections.

Please check your browser settings or contact your system administrator.