Vulnerabilities > CVE-2007-0138 - Denial-Of-Service vulnerability in Fersch Formbankserver 1.9
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
formbankcgi.exe in Fersch Formbankserver 1.9, when the PATH_INFO begins with (1) AbfrageForm or (2) EingabeForm, allows remote attackers to cause a denial of service (daemon crash) via multiple requests containing many /../ sequences in the Name parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Formbankserver 1.9 (Name) Remote Denial of Service Exploit. CVE-2006-6910,CVE-2007-0138. Dos exploit for windows platform |
| file | exploits/windows/dos/3056.pl |
| id | EDB-ID:3056 |
| last seen | 2016-01-31 |
| modified | 2006-12-31 |
| platform | windows |
| port | |
| published | 2006-12-31 |
| reporter | Bl0od3r |
| source | https://www.exploit-db.com/download/3056/ |
| title | Formbankserver 1.9 Name Remote Denial of Service Exploit |
| type | dos |