CVE-2006-0026

Опубликовано: 11 июл. 2006

Источник: nvd

CVSS2: 6.5

EPSS Критический

Описание

Buffer overflow in Microsoft Internet Information Services (IIS) 5.0, 5.1, and 6.0 allows local and possibly remote attackers to execute arbitrary code via crafted Active Server Pages (ASP).

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2006-07/0316.html
http://secunia.com/advisories/21006
Patch
Vendor Advisory
http://securitytracker.com/id?1016466
Patch
http://www.kb.cert.org/vuls/id/395588
Patch
US Government Resource
http://www.osvdb.org/27152
http://www.securityfocus.com/bid/18858
Patch
http://www.us-cert.gov/cas/techalerts/TA06-192A.html
US Government Resource
http://www.vupen.com/english/advisories/2006/2752
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-034
https://exchange.xforce.ibmcloud.com/vulnerabilities/26796
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A435
http://archives.neohapsis.com/archives/bugtraq/2006-07/0316.html
http://secunia.com/advisories/21006
Patch
Vendor Advisory
http://securitytracker.com/id?1016466
Patch
http://www.kb.cert.org/vuls/id/395588
Patch
US Government Resource
http://www.osvdb.org/27152
http://www.securityfocus.com/bid/18858
Patch
http://www.us-cert.gov/cas/techalerts/TA06-192A.html
US Government Resource
http://www.vupen.com/english/advisories/2006/2752
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-034

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:microsoft:internet_information_server:6.0:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:internet_information_services:5.0:*:*:*:*:*:*:*

EPSS

Процентиль: 100%

0.90121

Критический

6.5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-2w52-p6rg-2493

github

почти 4 года назад