Описание
Directory traversal vulnerability in TFTPsrvs.exe 2.5.3.1 and earlier, as used in Argon Technology Client Management Services (CMS) 1.31 and earlier, allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.
Directory traversal vulnerability in TFTPsrvs.exe 2.5.3.1 and earlier, as used in Argon Technology Client Management Services (CMS) 1.31 and earlier, allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2008-1281
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41076
- https://www.exploit-db.com/exploits/5230
- http://aluigi.altervista.org/adv/argonauti-adv.txt
- http://secunia.com/advisories/29302
- http://www.securityfocus.com/archive/1/489363/100/0/threaded
- http://www.securityfocus.com/bid/28160
- http://www.vupen.com/english/advisories/2008/0815/references
Связанные уязвимости
nvd
почти 18 лет назад
Directory traversal vulnerability in TFTPsrvs.exe 2.5.3.1 and earlier, as used in Argon Technology Client Management Services (CMS) 1.31 and earlier, allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.