Summary
The remote web server is affected by an information disclosure vulnerability.
Description :
The version of Easy File Sharing Web Server that is installed on the remote host fails to restrict access to files via alternative data streams. By passing a specially-crafted request to the web server, an attacker may be able to access privileged information.
See Also :
http://www.milw0rm.com/exploits/2690
Solution
Unknown at this time.
Severity
Classification
-
CVE CVE-2006-5714 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- 1024 CMS 1.1.0 Beta 'force_download.php' Local File Include Vulnerability
- Abtp Portal Project 'ABTPV_BLOQUE_CENT' Parameter Local and Remote File Include Vulnerabilities
- Apache Tomcat Login Constraints Security Bypass Vulnerability
- Apache Tomcat TroubleShooter Servlet Installed
- Admidio get_file.php Remote File Disclosure Vulnerability