BID:17188

Microsoft ASP.NET COM Components W3WP Remote Denial Of Service Vulnerability

Info

Microsoft ASP.NET COM Components W3WP Remote Denial Of Service Vulnerability

Bugtraq ID:	17188
Class:	Design Error
CVE:	CVE-2006-1364
Remote:	Yes
Local:	No
Published:	Mar 22 2006 12:00AM
Updated:	Jun 27 2007 10:18PM
Credit:	Debasis Mohanty is credited with the discovery of this vulnerability.
Vulnerable:	Microsoft ASP.NET 1.1 SP1 Microsoft ASP.NET 1.1 Microsoft ASP.NET 1.0 SP2 Microsoft ASP.NET 1.0 SP1 Microsoft ASP.NET 1.0 Microsoft ASP.NET 0

Not Vulnerable:

Discussion

Microsoft ASP.NET COM Components W3WP Remote Denial Of Service Vulnerability

Improper access of COM and COM+ components in ASP.NET applications can cause a denial-of-service condition in 'w3wp.exe' processes.

A remote attacker can exploit this issue to cause denial-of-service conditions in applications using improperly coded ASP.NET, effectively denying service to legitimate users.

Exploit / POC

Microsoft ASP.NET COM Components W3WP Remote Denial Of Service Vulnerability

The following proof-of-concept exploit is available:

/data/vulnerabilities/exploits/w3wp-dos.c

Solution / Fix

Microsoft ASP.NET COM Components W3WP Remote Denial Of Service Vulnerability

Solution:
According to the vendor, supplying the following @Page directive in ASP.NET applications will alleviate this problem:

<%@Page ASPCompat="true" %>

References

Microsoft ASP.NET COM Components W3WP Remote Denial Of Service Vulnerability

References:

.Net Home (Microsoft)
ASP.NET COM Component Compatibility (Microsoft)
Production Debugging for .NET Framework Applications (Microsoft)
Vendor Home Page (Microsoft)
w3wp remote DoS due to improper reference of STA COM components in ASP.NET (Debasis Mohanty)
w3wp remote DoS due to improper reference of STA COM components in ASP.NET (Debasis Mohanty)