CVE-2006-6104
published 2006-12-21CVE-2006-6104: The System.Web class in the XSP for ASP.NET server 1.1 through 2.0 in Mono does not properly verify local pathnames, which allows remote attackers to (1) read…
PriorityP430medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
4.96%
91.1th percentile
The System.Web class in the XSP for ASP.NET server 1.1 through 2.0 in Mono does not properly verify local pathnames, which allows remote attackers to (1) read source code by appending a space (%20) to a URI, and (2) read credentials via a request for Web.Config%20.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | mono | < mono 1.2.2.1-1 (bookworm) | mono 1.2.2.1-1 (bookworm) |
| mono | mono | >= 0 < 1.2.2.1-1 | 1.2.2.1-1 |
| mono | mono | >= 0 < 1.2.2.1-1 | 1.2.2.1-1 |
| mono | mono | >= 0 < 1.2.2.1-1 | 1.2.2.1-1 |
| mono | mono | >= 0 < 1.2.2.1-1 | 1.2.2.1-1 |
| mono | xsp | — | — |
| mono | xsp | — | — |
| mono | xsp | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
osv5.0MEDIUM
vendor_debian5.0LOW
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
mono vulnerability
vendor_ubuntu·2006-12-20
CVE-2006-6104 mono vulnerability
Title: mono vulnerability
Summary: mono vulnerability
Jose Ramon Palanco discovered that the mono System.Web class did not
consistently verify local file paths. As a result, the source code for
mono web applications could be retrieved remotely, possibly leading to
further compromise via the application's source.
Instructions: After a standard system upgrade you need to restart any mono web
applications to effect the necessary changes.
Debian
CVE-2006-6104: mono - The System.Web class in the XSP for ASP.NET server 1.1 through 2.0 in Mono does ...
vendor_debian·2006·CVSS 5.0
CVE-2006-6104 [MEDIUM] CVE-2006-6104: mono - The System.Web class in the XSP for ASP.NET server 1.1 through 2.0 in Mono does ...
The System.Web class in the XSP for ASP.NET server 1.1 through 2.0 in Mono does not properly verify local pathnames, which allows remote attackers to (1) read source code by appending a space (%20) to a URI, and (2) read credentials via a request for Web.Config%20.
Scope: local
bookworm: resolved (fixed in 1.2.2.1-1)
bullseye: resolved (fixed in 1.2.2.1-1)
forky: resolved (fixed in 1.2.2.1-1)
sid: resolved (fixed in 1.2.2.1-1)
trixie: resolved (fixed in 1.2.2.1-1)
GHSA
GHSA-gv7j-rggf-vg58: The System
ghsa_unreviewed·2022-05-01
CVE-2006-6104 [MEDIUM] GHSA-gv7j-rggf-vg58: The System
The System.Web class in the XSP for ASP.NET server 1.1 through 2.0 in Mono does not properly verify local pathnames, which allows remote attackers to (1) read source code by appending a space (%20) to a URI, and (2) read credentials via a request for Web.Config%20.
OSV
CVE-2006-6104: The System
osv·2006-12-21·CVSS 5.0
CVE-2006-6104 [MEDIUM] CVE-2006-6104: The System
The System.Web class in the XSP for ASP.NET server 1.1 through 2.0 in Mono does not properly verify local pathnames, which allows remote attackers to (1) read source code by appending a space (%20) to a URI, and (2) read credentials via a request for Web.Config%20.
No detection rules found.
http://fedoranews.org/cms/node/2400http://fedoranews.org/cms/node/2401http://lists.suse.com/archive/suse-security-announce/2007-Jan/0002.htmlhttp://secunia.com/advisories/23432http://secunia.com/advisories/23435http://secunia.com/advisories/23462http://secunia.com/advisories/23597http://secunia.com/advisories/23727http://secunia.com/advisories/23776http://secunia.com/advisories/23779http://security.gentoo.org/glsa/glsa-200701-12.xmlhttp://securityreason.com/securityalert/2082http://securitytracker.com/id?1017430http://www.eazel.es/advisory007-mono-xsp-source-disclosure-vulnerability.htmlhttp://www.mandriva.com/security/advisories?name=MDKSA-2006:234http://www.securityfocus.com/archive/1/454962/100/0/threadedhttp://www.securityfocus.com/bid/21687http://www.ubuntu.com/usn/usn-397-1http://www.vupen.com/english/advisories/2006/5099https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2092http://fedoranews.org/cms/node/2400http://fedoranews.org/cms/node/2401http://lists.suse.com/archive/suse-security-announce/2007-Jan/0002.htmlhttp://secunia.com/advisories/23432http://secunia.com/advisories/23435http://secunia.com/advisories/23462http://secunia.com/advisories/23597http://secunia.com/advisories/23727http://secunia.com/advisories/23776http://secunia.com/advisories/23779http://security.gentoo.org/glsa/glsa-200701-12.xmlhttp://securityreason.com/securityalert/2082http://securitytracker.com/id?1017430http://www.eazel.es/advisory007-mono-xsp-source-disclosure-vulnerability.htmlhttp://www.mandriva.com/security/advisories?name=MDKSA-2006:234http://www.securityfocus.com/archive/1/454962/100/0/threadedhttp://www.securityfocus.com/bid/21687http://www.ubuntu.com/usn/usn-397-1http://www.vupen.com/english/advisories/2006/5099https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2092
2006-12-21
Published