Intrusion Prevention



It indicates a file disclosure vulnerability in AOLServer 3.0.

AOLServer is an open source web server. Due to a flaw in AOL server 3.4.2 for Windows, it is possible for attackers to gain read access to known password protected files on a target system via a specially-crafted file name request.

Affected Products

Any unprotected AOL server 3.4.2 is vulnerable.


Attackers can gain sensitive information about the victim server.

Recommended Actions

Apply appropriate patches or Upgrade the system to the latest non-vulnerable version.

Other References