6.5

CVE-2006-0026

Buffer overflow in Microsoft Internet Information Services (IIS) 5.0, 5.1, and 6.0 allows local and possibly remote attackers to execute arbitrary code via crafted Active Server Pages (ASP).
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 88.9% 0.998
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.5 8 6.4
AV:N/AC:L/Au:S/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.us-cert.gov/cas/techalerts/TA06-192A.html
US Government Resource
http://archives.neohapsis.com/archives/bugtraq/2006-07/0316.html
http://secunia.com/advisories/21006
Patch
Vendor Advisory
http://securitytracker.com/id?1016466
Patch
http://www.kb.cert.org/vuls/id/395588
Patch
US Government Resource
http://www.osvdb.org/27152
http://www.securityfocus.com/bid/18858
Patch
http://www.vupen.com/english/advisories/2006/2752
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-034
https://exchange.xforce.ibmcloud.com/vulnerabilities/26796
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A435