Lucene search
MitreCVE-2006-4654HistorySep 09, 2006 - 12:04 a.m.
CVE-2006-4654
2006-09-0900:04:00
mitre
web.nvd.nist.gov
26
easy address book
web server
vulnerability
format string
denial of service
server compromise
nvd
cve-2006-4654
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
AI Score
6.7
Confidence
High
EPSS
0.037
Percentile
91.8%
Format string vulnerability in Easy Address Book Web Server 1.2 allows remote attackers to cause a denial of service (crash) or “compromise the server” via encoded format string specifiers in the query string.
Affected configurations
Node
efs_softwareeasy_address_book_web_serverMatch1.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| efs_software | easy_address_book_web_server | 1.2 | cpe:2.3:a:efs_software:easy_address_book_web_server:1.2:*:*:*:*:*:*:* |
Related
nessus
nessus
Easy Address Book Web Server Query Remote Format String
2006-09-05 00:00:00
cvelist
cvelist
CVE-2006-4654
2006-09-09 00:00:00
exploitdb
exploitdb
Easy Address Book Web Server 1.2 - Remote Format String
2006-09-04 00:00:00
nvd
nvd
CVE-2006-4654
2006-09-09 00:04:00
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
AI Score
6.7
Confidence
High
EPSS
0.037
Percentile
91.8%
Related for CVE-2006-4654