Vulnerabilities

CVE-2007-0888

by Fred · 12/02/2007

Directory traversal vulnerability in the TFTP server in Kiwi CatTools before 3.2.0 beta allows remote attackers to read arbitrary files, and upload files to arbitrary locations, via ..// (dot dot) sequences in the pathname argument to an FTP (1) GET or (2) PUT command.

Date published : 2007-02-12

http://www.securityfocus.com/bid/22490

http://www.securityfocus.com/archive/1/459500/100/0/threaded

Similar

Tags: Cybersecurity Alert