Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1417


Vulnerability Score 7.5 7.5
CVE Id CVE-1999-1417
Last Modified 10 Sep 2008 03:01:54
Published 23 Aug 1998 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Format string vulnerability in AnswerBook2 (AB2) web server dwhttpd 3.1a4 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via encoded % characters in an HTTP request, which is improperly logged.

Vulnerable Systems


  • Inso Answerbook2


BID - 253

BUGTRAQ - 19980823 Solaris ab2 web server is junk

Last Updated: 27 May 2016 10:35:24