CVE-2010-4225

Published: Jan 11, 2011Modified: Apr 29, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Unspecified vulnerability in the mod_mono module for XSP in Mono 2.8.x before 2.8.2 allows remote attackers to obtain the source code for .aspx (ASP.NET) applications via unknown vectors related to an "unloading bug."

Affected (2)

Products: Mono: Mono

Mono

1 product

Mono

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Mono Mono	Version 2.8.1
Mono Mono	Version 2.8

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (12)

http://osvdb.org/70312

Source: cve@mitre.org

http://secunia.com/advisories/42842

Source: cve@mitre.org

Vendor Advisory

http://www.mono-project.com/Vulnerabilities#XSP.2Fmod_mono_source_code_disclosure

Source: cve@mitre.org

http://www.securityfocus.com/bid/45711

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2011/0051

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/64532

Source: cve@mitre.org

http://osvdb.org/70312