CVE-2011-2756 Information

Description

FileDownload.jsp in ManageEngine ServiceDesk Plus 8.0 before Build 8012 does not require authentication which allows remote attackers to read files from a specific directory via unspecified vectors.

Reference

http://www.kb.cert.org/vuls/id/543310