Denial of Service Vulnerability in Microsoft ASP.NET Framework
CVE-2009-1536

Currently unrated

Key Information:

Vendor

Microsoft
Status
.net Framework
Windows Server 2008
Windows Vista
Vendor
CVE Published:
12 August 2009

What is CVE-2009-1536?

The ASP.NET component of Microsoft .NET Framework, specifically in versions 2.0 SP1, SP2, and 3.5, allows remote attackers to disrupt service by exploiting improper request scheduling when running in integrated mode on IIS 7.0. By sending specially crafted HTTP requests, an attacker can initiate a denial of service condition that impacts the availability of the application.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://oval.cisecurity.org/repository/search/definition/...
vdb-entrysignaturex_refsource_OVAL
http://www.us-cert.gov/cas/techalerts/TA09-223A.html
third-party-advisoryx_refsource_CERT
http://www.vupen.com/english/advisories/2009/2231
vdb-entryx_refsource_VUPEN

EPSS Score

53% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.