Description
Directory traversal vulnerability in SolarWinds TFTP Server 8.1 and earlier allows remote attackers to download arbitrary files via a crafted GET request including "....//" sequences, which are collapsed into "../" sequences by filtering.
Affected products
- SolarWinds / tftp_server5.0.55_standard – 5.0.55_standard
- SolarWinds / tftp_server5.0.60standard – 5.0.60standard
- SolarWinds / tftp_server8.1 – 8.1
References
- MISChttp://www.securityfocus.com/bid/17648
- MISChttp://www.securityfocus.com/archive/1/431729/100/0/threaded
- VENDOR_ADVISORYhttp://www.rapid7.com/advisories/R7-0019.html
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/25969
- MISChttp://archives.neohapsis.com/archives/vulnwatch/2006-q2/0009.html
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2006/1561
- VENDOR_ADVISORYhttp://secunia.com/advisories/19848
- MISChttp://securityreason.com/securityalert/778