Lucene search

[email protected]CVE-2006-0026

HistoryJul 11, 2006 - 10:05 p.m.

CVE-2006-0026

2006-07-1122:05:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

microsoft iis

buffer overflow

code execution

asp

cve-2006-0026

nvd

7.8 High

AI Score

Confidence

High

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.963 High

EPSS

Percentile

99.5%

JSON

Buffer overflow in Microsoft Internet Information Services (IIS) 5.0, 5.1, and 6.0 allows local and possibly remote attackers to execute arbitrary code via crafted Active Server Pages (ASP).

CPENameOperatorVersion
microsoft:internet_information_servermicrosoft internet information servereq6.0
microsoft:internet_information_servicesmicrosoft internet information serviceseq5.0

CPE	Name	Operator	Version
microsoft:internet_information_server	microsoft internet information server	eq	6.0
microsoft:internet_information_services	microsoft internet information services	eq	5.0

References

archives.neohapsis.com/archives/bugtraq/2006-07/0316.html

secunia.com/advisories/21006

securitytracker.com/id?1016466

www.kb.cert.org/vuls/id/395588

www.osvdb.org/27152

www.securityfocus.com/bid/18858

www.us-cert.gov/cas/techalerts/TA06-192A.html

www.vupen.com/english/advisories/2006/2752

docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-034

exchange.xforce.ibmcloud.com/vulnerabilities/26796

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A435

7.8 High

AI Score

Confidence

High

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.963 High

EPSS

Percentile

99.5%

JSON

Related for CVE-2006-0026

cert1 nessus1 securityvulns1 checkpoint_advisories1 prion1