CVE-2001-1110

Name of the Vulnerable Software and Affected Versions EFTP version 2.0.7.337

Description The issue allows remote attackers to obtain NETBIOS credentials by requesting information on a file in a network share. This causes the server to send the credentials to the host that owns the share, enabling the attacker to sniff the connection.

Recommendations For EFTP version 2.0.7.337, consider restricting access to network shares until a fix is available. As a temporary workaround, limit the use of NETBIOS credentials in the affected EFTP version to minimize the risk of exploitation.