CVE-2015-2526

Name of the Vulnerable Software and Affected Versions Microsoft .NET Framework versions 4.5 through 4.6

Description The issue is related to errors in the code of the Microsoft .NET Framework, which can be exploited by a remote attacker to cause a denial of service condition on an ASP.NET web site. This is achieved by sending specially crafted requests to the ASP.NET server, leading to significant performance degradation. The vulnerability can be used to disrupt the availability of sites that use ASP.NET.

Recommendations For Microsoft .NET Framework versions 4.5 through 4.6, consider applying configuration changes to handle specially crafted requests properly, or restrict access to the ASP.NET server to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.