I have run all the Windows Updates and I am still getting thi warning from our PCI Compliance scan. I have tried googling this but I cannot find a patch or fix for this.
Microsoft ASP.NET w3wp.exe COM component DoS
The version of Microsoft .NET identified running on this server is
vulnerable to a Denial of Service attack. Remote attackers can cause
a resource exhaustion on the server by repeatedly requesting each of
several documents that refer to COM components, or are restricted
documents located under the ASP.NET application path.
This finding is based on version information which may not have been
updated by previously installed patches (e.g., Red Hat "back ports ").
Please submit a "Patched Service " dispute in TrustKeeper if this
vulnerability has already been patched.
CVE: CVE-2006-1364
NVD: CVE-2006-1364
Bugtraq: 17188
CVSSv2: AV:N/AC:L/Au:N/C:N/I:N/A:C(7.80)
Reference: http://xforce.iss.net/xforce/xfdb/25392
Service: http
Evidence:
Match: '1.1.4322' is greater than or equal to '1.0.2204.0'
Match: '1.1.4322' is less than '1.1.4322.2310'
TechNet