CVE-2023-4491
Easy Address Book Web Server Buffer overflow vulnerability
Buffer overflow vulnerability in Easy Address Book Web Server 1.6 version. The exploitation of this vulnerability could allow an attacker to send a very long username string to /searchbook.ghp, asking for the name via a POST request, resulting in arbitrary code execution on the remote machine.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
EFS Software · Easy Address Book Web ServerWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →