Lucene search

[email protected]CVE-2006-1511

HistoryMar 30, 2006 - 1:06 a.m.

CVE-2006-1511

2006-03-3001:06:00

[email protected]

web.nvd.nist.gov

cve-2006-1511

buffer overflow

ilasm assembler

microsoft .net

arbitrary code execution

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

High

0.079 Low

EPSS

Percentile

94.3%

JSON

Buffer overflow in the ILASM assembler in the Microsoft .NET 1.0 and 1.1 Framework might allow user-assisted attackers to execute arbitrary code via a .il file that calls a function with a long name.

Affected configurations

NVD

Node

microsoft.net_frameworkMatch1.0sdk

microsoft.net_frameworkMatch1.0sp1sdk

microsoft.net_frameworkMatch1.0sp2sdk

microsoft.net_frameworkMatch1.1sdk

microsoft.net_frameworkMatch1.1sp1sdk

CPENameOperatorVersion
microsoft:.net_frameworkmicrosoft .net frameworkeq1.0
microsoft:.net_frameworkmicrosoft .net frameworkeq1.1

CPE	Name	Operator	Version
microsoft:.net_framework	microsoft .net framework	eq	1.0
microsoft:.net_framework	microsoft .net framework	eq	1.1

References

lists.grok.org.uk/pipermail/full-disclosure/2006-March/044482.html

owasp.net/forums/234/showpost.aspx

owasp.net/forums/257/showpost.aspx

secunia.com/advisories/19406

www.securityfocus.com/bid/17243

www.vupen.com/english/advisories/2006/1113

exchange.xforce.ibmcloud.com/vulnerabilities/25438

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

High

0.079 Low

EPSS

Percentile

94.3%

JSON

Related for CVE-2006-1511

cvelist1 nvd1 prion1