By leveraging a cryptographic weakness within all supported versions of ASP.NET, remote unauthenticated attackers could potentially obtain sensitive information such as session information, site login credentials, and/or read files stored on the vulnerable server such as web.config.
ASP.NET 4.0 and prior
BeyondTrust Prevention and Detection:
- BeyondTrust's Retina® Network Security Scanner scans devices to detect for this vulnerability.
- Retina Audit 13470 - Microsoft ASP.NET Viewstate Padding Information Disclosure (Zero-Day)
Enable ASP.NET custom errors and map all error codes to the same page to prevent attackers from performing attacks against vulnerable servers.