Microsoft Internet Information Services (IIS) ASP buffer overflow

iis-asp-bo (26796) The risk level is classified as HighHigh Risk

Description:

Microsoft Internet Information Services (IIS) is vulnerable to a buffer overflow, caused by improper bounds checking of Active Server Pages (ASP). By uploading a specially-crafted ASP file to an affected Web server, a remote attacker with valid logon credentials could overflow a buffer and execute arbitrary code on the system, once IIS processes the malicious file.

Platforms Affected:

  • Microsoft, IIS 5.0
  • Microsoft, IIS 5.1
  • Microsoft, IIS 6.0
  • Microsoft, Windows 2000 SP4
  • Microsoft, Windows 2003 Server x64
  • Microsoft, Windows 2003 Server SP1
  • Microsoft, Windows 2003 Server Itanium
  • Microsoft, Windows 2003 Server SP1 Itanium
  • Microsoft, Windows XP SP2 Professional
  • Microsoft, Windows XP Professional x64
  • Microsoft, Windows XP SP1 Professional

Remedy:

Apply the appropriate patch for your system, as listed in the latest Microsoft Security Bulletin. See References.

— OR —

Use Microsoft Automatic Update if it is supported by your operating system. The original bulletin issued by Microsoft has been superseded.

Consequences:

Gain Access

References:

  • Microsoft Security Bulletin MS06-034, Vulnerability in Microsoft Internet Information Services using Active Server Pages Could Lead To Remote Code Execution (917537) at http://www.microsoft.com/technet/security/Bulletin/MS06-034.mspx.
  • Microsoft Security Bulletin MS08-006, Vulnerability in Internet Information Services Could Allow Remote Code Execution (942830) at http://www.microsoft.com/technet/security/Bulletin/MS08-006.mspx.
  • ASA-2006-135: Windows Security Updates for July 2006 - (MS06-033 - MS06-039)
  • BID-18858: Microsoft IIS ASP Remote Code Execution Vulnerability
  • CVE-2006-0026: Buffer overflow in Microsoft Internet Information Services (IIS) 5.0, 5.1, and 6.0 allows local and possibly remote attackers to execute arbitrary code via crafted Active Server Pages (ASP).
  • OSVDB ID: 27152: Microsoft Windows IIS ASP Page Processing Overflow
  • SA21006: Microsoft Internet Information Services ASP Code Buffer Overflow
  • SECTRACK ID: 1016466: Microsoft Internet Information Server (IIS) Buffer Overflow in Processing ASP Pages Lets Remote Authenticated Users Execute Arbitrary Code
  • US-CERT VU#395588: Microsoft Internet Information Services vulnerable to remote code execution via specially crafted ASP file
  • VUPEN/ADV-2006-2752: Microsoft Internet Information Services Code Execution Vulnerability (MS06-034)

Reported:

Jul 11, 2006

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.

For corrections or additions please email xforce@iss.net

Return to the main page