CVE-2006-6910 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-6910

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

formbankcgi.exe in Fersch Formbankserver 1.9, when the PATH_INFO begins with Abfrage, allows remote attackers to cause a denial of service (daemon crash) via multiple requests containing many /../ sequences in the Name parameter.

Affected Software

Name	Vendor	Start Version	End Version
Formbankserver	Fersch	1.9 (including)	1.9 (including)

References

http://secunia.com/advisories/23539
http://www.securityfocus.com/bid/21841
https://exchange.xforce.ibmcloud.com/vulnerabilities/31216
https://www.exploit-db.com/exploits/3056
http://secunia.com/advisories/23539
http://www.securityfocus.com/bid/21841
https://exchange.xforce.ibmcloud.com/vulnerabilities/31216
https://www.exploit-db.com/exploits/3056