CVE-2005-1665 Information

Description

The __VIEWSTATE functionality in Microsoft ASP.NET 1.x when not cryptographically signed allows remote attackers to cause a denial of service (CPU consumption) via deeply nested markup.

Reference

http://marc.info/?l=bugtraq&m=111513127704270&w=2 http://scottonwriting.net/sowblog/posts/3747.aspx http://secunia.com/advisories/15241 http://www.osvdb.org/16195 https://exchange.xforce.ibmcloud.com/vulnerabilities/20408