APG Technology ClassMaster does not properly restrict access to sensitive folders, which allows remote attackers to access folders via a network share.