Vulnerabilities > CVE-2005-1665 - Unspecified vulnerability in Microsoft Asp.Net 1.0/1.1
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
The __VIEWSTATE functionality in Microsoft ASP.NET 1.x, when not cryptographically signed, allows remote attackers to cause a denial of service (CPU consumption) via deeply nested markup.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
References
- http://marc.info/?l=bugtraq&m=111513127704270&w=2
- http://marc.info/?l=bugtraq&m=111513127704270&w=2
- http://scottonwriting.net/sowblog/posts/3747.aspx
- http://scottonwriting.net/sowblog/posts/3747.aspx
- http://secunia.com/advisories/15241
- http://secunia.com/advisories/15241
- http://www.osvdb.org/16195
- http://www.osvdb.org/16195
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20408
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20408