CVE-2006-6910 Information

Description

formbankcgi.exe in Fersch Formbankserver 1.9 when the PATH_INFO begins with Abfrage allows remote attackers to cause a denial of service (daemon crash) via multiple requests containing many /../ sequences in the Name parameter.

Reference

http://secunia.com/advisories/23539 http://www.securityfocus.com/bid/21841 https://exchange.xforce.ibmcloud.com/vulnerabilities/31216 https://www.exploit-db.com/exploits/3056