Efs Software » Efs Web Server : Security Vulnerabilities, CVEs, CVSS score >= 5
Easy File Sharing (EFS) Web Server 4.0, when running on an NTFS file system, allows remote attackers to read arbitrary files under the web root by appending "::$DATA" to the end of a HTTP GET request, which accesses the alternate data stream.
Max CVSS
5.0
EPSS Score
1.85%
Published
2006-11-04
Updated
2017-10-19
Absolute path traversal vulnerability in Easy File Sharing (EFS) Web Server 3.2 allows remote registered users to execute arbitrary code by uploading a malicious file to the Windows startup folder.
Max CVSS
6.5
EPSS Score
0.19%
Published
2006-03-12
Updated
2018-10-18
Format string vulnerability in Easy File Sharing (EFS) Web Server 3.2 allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via format string specifiers in the query string argument in an HTTP GET request.
Max CVSS
7.8
EPSS Score
14.86%
Published
2006-03-12
Updated
2018-10-18
Easy File Sharing (EFS) Webserver 1.25 allows remote attackers to cause a denial of service (CPU consumption or crash) via many large HTTP requests.
Max CVSS
5.0
EPSS Score
10.67%
Published
2004-08-24
Updated
2017-07-11
Easy File Sharing (EFS) Webserver 1.25 allows remote attackers to view arbitrary files via an HTTP request for the disk_c virtual folder.
Max CVSS
5.0
EPSS Score
1.94%
Published
2004-08-24
Updated
2017-07-11
5 vulnerabilities found