Intrusion Prevention

eyeOS.Information.Disclosure

Description

This indicates an attack attempt to exploit an unauthorized information disclosure vulnerability in eyeOS.
The vulnerability is a result of the application's failure to sanitize use input. As a result, a remote attack will be able to view local files by sending a specially crafted request to the server.

Affected Products

eyeOS version 2.3

Impact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

Recommended Actions

Upgrade to the latest version available from the website.
http://www.eyeos.org/