CVE-2006-6933

Name of the Vulnerable Software and Affected Versions: Easy Chat Server version 2.1

Description: The issue allows remote attackers to download certain files due to insufficient access control. Sensitive information is stored under the web root, making it accessible via direct requests to files such as ServerKey.pem and AcceptIP.txt.

Recommendations: For Easy Chat Server version 2.1, restrict access to sensitive files such as ServerKey.pem and AcceptIP.txt to prevent unauthorized downloads. Consider relocating these files outside the web root or implementing proper access controls to mitigate the risk.