← back
CVE-2006-5715

CVE-2006-5715

EPSS 6.2%
Easy File Sharing (EFS) Easy Address Book 1.2, when run on an NTFS file system, allows remote attackers to read arbitrary files under the web root by appending "::$DATA" to the end of an HTTP GET request, which accesses the alternate data stream.
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/2699unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/22681https://exchange.xforce.ibmcloud.com/vulnerabilities/29976https://www.exploit-db.com/exploits/2699http://www.securityfocus.com/bid/20861http://www.vupen.com/english/advisories/2006/4312