Intrusion Prevention

Sun.AnswerBook2.Format.String

Description

Indicates a possible attempt to exploit a Format String vulnerability in Sun AnswerBook2. The vulnerability exists because the software does not properly sanitize user-supplied input from a GET request.

Affected Products

Sun Solaris 2.6 _x86
Sun Solaris 2.6
Inso dwhttpd 3.1 a4

Impact

System compromise.

Recommended Actions

Upgrade to a non-vulnerable version.

CVE References

CVE-1999-1417