Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.6
Easy File Sharing Web Server 7.2 allows local attackers to execute malicious code.
CVE-2019-25466
Summary
A bug in the Easy File Sharing Web Server 7.2 software could allow someone with access to the server to create a malicious username that lets them execute unauthorized code. This could happen by adding a new user account. It's essential to update the software to a secure version to prevent this from happening.
Original title
Easy File Sharing Web Server 7.2 contains a local structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by creating a malicious username....
Original description
Easy File Sharing Web Server 7.2 contains a local structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by creating a malicious username. Attackers can craft a username with a payload containing 4059 bytes of padding followed by a nseh value and seh pointer to trigger the overflow when adding a new user account.
nvd CVSS3.1
8.4
nvd CVSS4.0
8.6
Vulnerability type
CWE-787
Out-of-bounds Write
Published: 11 Mar 2026 · Updated: 13 Mar 2026 · First seen: 11 Mar 2026