AOH :: Web :: Servers :: B06-4586.HTM

AOH :: Web :: Servers :: B06-4586.HTM
Easy Address Book Web Server Format String Vulnerability

Easy Address Book Web Server Format String Vulnerability Easy Address Book Web Server Format String Vulnerability


Easy Address Book Web Server Format String Vulnerability=0D
=0D
Software: Easy Address Book Web Server=0D
Version: 1.2=0D
Website: http://www.efssoft.com/=0D 
=0D
Description:=0D
Easy Address Book Web Server is a Web Address Book software that allows users to view, search, add, edit, or administer address books easily through a Web Browser.=0D
=0D
Vulnerability:=0D
By sending a specially crafted HTTP request, a remote attacker can crash or compromise the server.=0D
=0D
Denial of Service example:=0D
http://[host]/?%25n=0D 
=0D
Credit:=0D
Discovered by Revnic Vasile

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better). Site design & layout copyright © 1986-2009 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.