Network Security News Monitor - Wednesday, April 19, 2006 Events

Empire Server Format String DoS

A remote format string vulnerability exists in Empire Server. The user-supplied data in the load, spy, and bomb functions fail to correctly validate user-supplied input. With a specially crafted transaction including format strings, an attacker can cause the process to crash, resulting in a loss of availability to the service.. Read more.