CVE-2006-1364: CVE-2006-1364

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-1364

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Microsoft w3wp (aka w3wp.exe) does not properly handle when the AspCompat directive is not used when referencing COM components in ASP.NET, which allows remote attackers to cause a denial of service (resource consumption or crash) by repeatedly requesting each of several documents that refer to COM components, or are restricted documents located under the ASP.NET application path.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Microsoft ASP.NET COM Components W3WP远程拒绝服务漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Microsoft w3wp (aka w3wp.exe)未作妥善处理，这是由于当引用在ASP.NET中的COM组件时，未使用AspCompat指令的缘故，从而远程攻击者通过以下途径制造一个拒绝服务(资源占用或崩溃)：对引用COM组件或位于ASP.NET应用程序路径下受限制的每一个文件重复发送请求。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2006-1364

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2006-1364

Please Login to view more intelligence information

http://www.securiteam.com/windowsntfocus/5KP0O0KI0Y.htmlx_refsource_MISC
http://hackingspirits.com/vuln-rnd/w3wp-remote-dos.zipx_refsource_MISC
https://www.exploit-db.com/exploits/1601exploitx_refsource_EXPLOIT-DB
http://www.securityfocus.com/bid/17188vdb-entryx_refsource_BID
http://securitytracker.com/id?1015825vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/archive/1/428622/100/0/threadedmailing-listx_refsource_BUGTRAQ
http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/044292.htmlmailing-listx_refsource_FULLDISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/25392vdb-entryx_refsource_XF
http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/044291.htmlmailing-listx_refsource_FULLDISC
https://nvd.nist.gov/vuln/detail/CVE-2006-1364

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2006-1364

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2006-1364

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2006-1364

III. Intelligence Information for CVE-2006-1364

IV. Related Vulnerabilities

V. Comments for CVE-2006-1364

Leave a comment