CVE-2009-1730

Опубликовано: 20 мая 2009

Источник: nvd

CVSS2: 10

EPSS Высокий

Описание

Multiple directory traversal vulnerabilities in NetMechanica NetDecision TFTP Server 4.2 allow remote attackers to read or modify arbitrary files via directory traversal sequences in the (1) GET or (2) PUT command.

Ссылки

http://secunia.com/advisories/35131
Vendor Advisory
http://www.princeofnigeria.org/blogs/index.php/2009/05/17/netdecision-tftp-server-4-2-tftp-directo?blog=1
URL Repurposed
http://www.securityfocus.com/bid/35002
https://exchange.xforce.ibmcloud.com/vulnerabilities/50574
http://secunia.com/advisories/35131
Vendor Advisory
http://www.princeofnigeria.org/blogs/index.php/2009/05/17/netdecision-tftp-server-4-2-tftp-directo?blog=1
URL Repurposed
http://www.securityfocus.com/bid/35002
https://exchange.xforce.ibmcloud.com/vulnerabilities/50574

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:netmechanica:netdecision_tftp_server:4.2:*:*:*:*:*:*:*

EPSS

Процентиль: 99%

0.75459

Высокий

10 Critical

CVSS2

Дефекты

CWE-22

Связанные уязвимости

GHSA-834m-cfcj-8vp4

github

почти 4 года назад