CVE-2006-6910

Name of the Vulnerable Software and Affected Versions: Fersch Formbankserver version 1.9

Description: The issue allows remote attackers to cause a denial of service, resulting in a daemon crash. This is achieved by sending multiple requests with many /../ sequences in the Name parameter when the PATH INFO begins with 'Abfrage'.

Recommendations: For Fersch Formbankserver version 1.9, consider restricting access to the formbankcgi.exe to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid using the Name parameter in requests when the PATH INFO starts with 'Abfrage' to prevent daemon crashes.