Viewstate Deserialization Zero Day Vulnerability
Source: cloud.google.com
Published:
<p>Written by: Rommel Joven, Josh Fleischer, Joseph Sciuto, Andi Slok, Choon Kiat Ng</p> <p>Update (September 3): This post was updated to include information GoTokenTheft usage.</p> <p>In a recent investigation, Mandiant Threat Defense discovered an active ViewState deserialization attack affecting