[原文]Format string vulnerability in Easy File Sharing (EFS) Web Server 3.2 allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via format string specifiers in the query string argument in an HTTP GET request.
Remote / Network Access,
Local / Remote,
Denial of Service,
Loss of Integrity,
Loss of Availability
Easy File Sharing Web Server contains a flaw that may allow a remote denial of service. The issue is triggered when a URL containing a "%n" printf format string is requested, and will result in loss of availability for the service.
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.