[Forgot Password]
Login  Register Subscribe

23631

 
 

122434

 
 

98250

 
 

909

 
 

79281

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

Denial of Service Vulnerability in ASP.NET in Microsoft Windows - MS09-036

ID: oval:org.secpod.oval:def:2512Date: (C)2011-10-13   (M)2017-11-22
Class: PATCHFamily: windows




The host is missing an important security update according to Microsoft security bulletin, MS09-036. The update is required to fix denial of service vulnerability. A flaw is present in the Microsoft .NET Framework component of Microsoft Windows, which fails to handle specially crafted HTTP requests. Successful exploitation could allow attackers to create specially crafted anonymous HTTP requests that could cause the affected Web server to become non-responsive until the associated application pool is restarted.

Platform:
Microsoft Windows Server 2008
Microsoft Windows Vista
Product:
Microsoft .NET Framework
Reference:
MS09-036
CVE-2009-1536
CVE    1
CVE-2009-1536
CPE    14
cpe:/o:microsoft:windows_vista::sp1:x86
cpe:/o:microsoft:windows_vista:::x86
cpe:/a:microsoft:.net_framework:2.0
cpe:/a:microsoft:.net_framework:3.5
...
XCCDF    2
xccdf_com.secpod_benchmark_microsoft-windows-server-2008
xccdf_com.secpod_benchmark_microsoft-windows-vista

© 2013 SecPod Technologies