>> ELOG "global" Logbook URL Handling Remote Denial of Service Vulnerability
Title : ELOG "global" Logbook URL Handling Remote Denial of Service Vulnerability VUPEN ID : VUPEN/ADV-2006-4423 CVE ID : CVE-2006-6318
Rated as : Moderate Risk
Remotely Exploitable : Yes Locally Exploitable : Yes Release Date : 2006-11-10
Technical Description
A vulnerability has been identified in ELOG, which could be exploited by attackers to cause a denial of service. This flaw is due to a NULL pointer dereference error when handling a specially crafted URL with a logbook set to "global", which could be exploited by malicious users to crash a vulnerable application, creating a denial of service condition.
