2 matches found
CVE-2005-1665
CVE-2005-1665 affects Microsoft ASP.NET 1.x ViewState when not cryptographically signed; parsing crafted web session state information can lead to high CPU usage and a Denial of Service. The CPAI advisory describes it as an input sanitization/resource consumption vulnerability in ASP.NET on IIS, ...
CVE-2005-1665
The VIEWSTATE functionality in Microsoft ASP.NET 1.x, when not cryptographically signed, allows remote attackers to cause a denial of service CPU consumption via deeply nested markup...