Exploitation Summary
CVE-2010-3332 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 4 public exploits from researchers including Agustin Azubel, Giorgio Fedon, bongbongco.
AI-analyzed exploit summary This Ruby script exploits CVE-2010-3332, a vulnerability in ASP.NET's padding oracle attack, allowing decryption of sensitive data using chosen ciphertext techniques. It automates the discovery of block size, padding length, and decrypt commands.
Description
Microsoft .NET Framework 1.1 SP1, 2.0 SP1 and SP2, 3.5, 3.5 SP1, 3.5.1, and 4.0, as used for ASP.NET in Microsoft Internet Information Services (IIS), provides detailed error codes during decryption attempts, which allows remote attackers to decrypt and modify encrypted View State (aka __VIEWSTATE) form data, and possibly forge cookies or read application files, via a padding oracle attack, aka "ASP.NET Padding Oracle Vulnerability."
Exploits (4)
This Ruby script exploits CVE-2010-3332, a vulnerability in ASP.NET's padding oracle attack, allowing decryption of sensitive data using chosen ciphertext techniques. It automates the discovery of block size, padding length, and decrypt commands.
This Ruby script is a proof-of-concept exploit for CVE-2010-3332, leveraging padding oracle attacks to decrypt and encrypt data in ASP.NET applications. It implements techniques like Vaudenay's CBC padding oracle and Rizzo-Duong CBC-R to exploit vulnerabilities in cryptographic implementations.
This exploit leverages a padding oracle vulnerability in ASP.NET to decrypt and download the Web.config file. It uses a brute-force approach to manipulate encrypted data and extract sensitive information.
This repository contains a functional Ruby exploit for CVE-2010-3332, which targets the Oracle Padding Vulnerability in Microsoft ASP.NET. The exploit implements Vaudenay's CBC padding oracle attack and Rizzo-Duong CBC-R technique to decrypt and encrypt data.