Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2006-6104 — Mono vulnerability

7 documents7 sources

Severity

5.0MEDIUMNVD

EPSS

15.9%

top 5.23%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Mono Debian Mono Mono XSP

Timeline

PublishedDec 21

Latest updateMay 1

Description

The System.Web class in the XSP for ASP.NET server 1.1 through 2.0 in Mono does not properly verify local pathnames, which allows remote attackers to (1) read source code by appending a space (%20) to a URI, and (2) read credentials via a request for Web.Config%20.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

▶debiandebian/mono< mono 1.2.2.1-1 (bookworm)

▶Debianmono/mono< 1.2.2.1-1+3

▶NVDmono/xsp1.1, 1.2.1, 2.0+2

Patches

Patch: secunia.com ↗Patch: secunia.com ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-gv7j-rggf-vg58: The System↗2022-05-01

▶

OSV

CVE-2006-6104: The System↗2006-12-21

▶

💥Exploits & PoCs

Exploit-DB

Mono XSP 1.x/2.0 - Source Code Information Disclosure↗2006-12-20

▶

📋Vendor Advisories

Ubuntu

mono vulnerability↗2006-12-20

▶

Debian

CVE-2006-6104: mono - The System.Web class in the XSP for ASP.NET server 1.1 through 2.0 in Mono does ...↗2006

▶

💬Community

Bugzilla

CVE-2006-6104 XSP/mod_mono source code disclosure↗2006-12-28

▶