Easy File Sharing (EFS) Web Server 4.0, when running on an NTFS file system, allows remote malicious users to read arbitrary files under the web root by appending "::$DATA" to the end of a HTTP GET request, which accesses the alternate data stream.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
efs software efs web server 4.0 |