Double-encoded format string vulnerability in Monkey daemon (monkeyd) before 0.9.1 allows remote attackers to cause denial of service and potentially execute arbitrary code via HTTP GET request.

Double-encoded format string vulnerability in Monkey daemon (monkeyd) before 0.9.1 allows remote attackers to cause denial of service and potentially execute arbitrary code via HTTP GET request.

CVE-2005-1122 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Format string vulnerability in cgi.c for Monkey daemon (monkeyd) before 0.9.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an HTTP GET request containing double-encoded format string specifiers (aka "double expansion error").

Learn more about our Web Application Penetration Testing UK.