CVE-2008-6528

Name of the Vulnerable Software and Affected Versions TmaxSoft JEUS 5 versions prior to Fix 26

Description The issue allows remote attackers to read the source code for scripts by appending ::$DATA to the URL, which accesses the alternate data stream. This is achieved by exploiting the ability to access alternate data streams, specifically by appending ::$DATA to the URL of a script.

Recommendations For TmaxSoft JEUS 5 versions prior to Fix 26, apply Fix 26 to resolve the issue. As a temporary workaround, consider restricting access to sensitive scripts and directories to minimize the risk of exploitation.