Back to search
CVE-2003-1297
Published: Mar 19, 2006
Modified: Sep 16, 2024
PUBLISHED
Description
Easy File Sharing (EFS) Web Server 1.2 stores the (1) option.ini (aka options.ini) file and (2) log directory under the web root with insufficient access control, which allows remote attackers to obtain sensitive information including an SMTP account username and password hash, the server configuration, and server log files.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
23794
vdb-entry
x_refsource_OSVDB
23795
vdb-entry
x_refsource_OSVDB
20031004 Vulnerabilities in Easy File Sharing Web Server (1.2 NEW)
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now