CVE-2006-6910

2007-01-0911:00:00

mitre

www.cve.org

6.6 Medium

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.4%

JSON

formbankcgi.exe in Fersch Formbankserver 1.9, when the PATH_INFO begins with Abfrage, allows remote attackers to cause a denial of service (daemon crash) via multiple requests containing many /…/ sequences in the Name parameter.

References

secunia.com/advisories/23539

www.securityfocus.com/bid/21841

exchange.xforce.ibmcloud.com/vulnerabilities/31216

www.exploit-db.com/exploits/3056