Vulnerability Details CVE-2006-1651
Microsoft ISA Server 2004 allows remote attackers to bypass certain filtering rules, including ones for (1) ICMP and (2) TCP, via IPv6 packets. NOTE: An established researcher has disputed this issue, saying that "Neither ISA Server 2004 nor Windows 2003 Basic Firewall support IPv6 filtering ... This is different network protocol.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.194
EPSS Ranking 95.0%
CVSS Severity
CVSS v2 Score 7.5
References
- http://www.securityfocus.com/archive/1/429816/100/0/threaded
- http://www.securityfocus.com/archive/1/429846/100/0/threaded
- http://www.securityfocus.com/archive/1/430281/100/0/threaded
- http://www.securityfocus.com/archive/1/430684/100/0/threaded
- http://www.securityfocus.com/archive/1/429816/100/0/threaded
- http://www.securityfocus.com/archive/1/429846/100/0/threaded
- http://www.securityfocus.com/archive/1/430281/100/0/threaded
- http://www.securityfocus.com/archive/1/430684/100/0/threaded
Products affected by CVE-2006-1651
-
cpe:2.3:a:microsoft:isa_server:2004