Vulnerability Details CVE-2006-0026
Buffer overflow in Microsoft Internet Information Services (IIS) 5.0, 5.1, and 6.0 allows local and possibly remote attackers to execute arbitrary code via crafted Active Server Pages (ASP).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.901
EPSS Ranking 99.6%
CVSS Severity
CVSS v2 Score 6.5
References
- http://archives.neohapsis.com/archives/bugtraq/2006-07/0316.html
- http://secunia.com/advisories/21006
- http://securitytracker.com/id?1016466
- http://www.kb.cert.org/vuls/id/395588
- http://www.osvdb.org/27152
- http://www.securityfocus.com/bid/18858
- http://www.us-cert.gov/cas/techalerts/TA06-192A.html
- http://www.vupen.com/english/advisories/2006/2752
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-034
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26796
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A435
- http://archives.neohapsis.com/archives/bugtraq/2006-07/0316.html
- http://secunia.com/advisories/21006
- http://securitytracker.com/id?1016466
- http://www.kb.cert.org/vuls/id/395588
- http://www.osvdb.org/27152
- http://www.securityfocus.com/bid/18858
- http://www.us-cert.gov/cas/techalerts/TA06-192A.html
- http://www.vupen.com/english/advisories/2006/2752
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-034
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26796
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A435
Products affected by CVE-2006-0026
-
cpe:2.3:a:microsoft:internet_information_server:6.0
-
cpe:2.3:a:microsoft:internet_information_services:5.0