Simon Ryeo

**Name of the Vulnerable Software and Affected Versions** TmaxSoft JEUS 5 versions prior to Fix 26 **Description** The issue allows remote attackers to read the source code for scripts by appending ::$DATA to the URL, which accesses the alternate data stream. This is achieved by exploiting the ability to access alternate data streams, specifically by appending `::$DATA` to the URL of a script. **Recommendations** For TmaxSoft JEUS 5 versions prior to Fix 26, apply Fix 26 to resolve the issue. As a temporary workaround, consider restricting access to sensitive scripts and directories to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Nefficient Download version 1.0.5 **Description** The issue allows remote attackers to download arbitrary code onto a client system. This can be achieved by exploiting a directory traversal vulnerability in the NeffyLauncher ActiveX control. The vulnerability can be triggered by including a .. (dot dot) in the `SkinPath` parameter and a .zip URL in the `HttpSkin` parameter. This can potentially be leveraged for code execution by writing to a Startup folder. **Recommendations** For version 1.0.5, consider disabling the NeffyLauncher ActiveX control until a patch is available to prevent exploitation of the directory traversal vulnerability. Restrict access to the `SkinPath` and `HttpSkin` parameters to minimize the risk of downloading arbitrary code. Avoid using the `SkinPath` and `HttpSkin` parameters in the NeffyLauncher ActiveX control until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** CDNetworks Nefficient Download version 1.0.5 **Description** The issue concerns the use of weak cryptography for a KeyCode in the NeffyLauncher ActiveX control, allowing remote attackers to bypass protection by calculating the required KeyCode. This can be exploited by arbitrary web sites hosting malicious code targeting the control. **Recommendations** For version 1.0.5, consider disabling the NeffyLauncher ActiveX control until a patch is available to prevent exploitation. Restrict access to the NeffyLauncher.dll module to minimize the risk of unauthorized use. Avoid using the control on untrusted web sites to reduce the risk of hosting exploit code.