MOABI : Continuous Software Improvement

CVE-2003-1297
Description	Easy File Sharing (EFS) Web Server 1.2 stores the (1) option.ini (aka options.ini) file and (2) log directory under the web root with insufficient access control, which allows remote attackers to obtain sensitive information including an SMTP account username and password hash, the server configuration, and server log files.
Impact	CVSS v2 : 5 MEDIUM
Type	NVD-CWE-Other
Attack Vector	CVSSv2 Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N
Quick links	CVE, NVD, CERT, Metasploit, Exploit-db, Fulldisc, Bugtraq, Microsoft, Red Hat, Debian, GitHub code/issues, Google
References	http://archives.neohapsis.com/archives/bugtraq/2003-10/0083.html http://www.osvdb.org/23794 http://www.osvdb.org/23795