CVE-2002-1209

Currently unrated

Key Information:

Vendor: Solarwinds
Status: Tftp Server
Vendor: CVE Published:; 4 November 2002

Summary

Directory traversal vulnerability in SolarWinds TFTP Server 5.0.55, and possibly earlier, allows remote attackers to read arbitrary files via ".." (dot-dot backslash) sequences in a GET request.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/10469

vdb-entryx_refsource_XF

http://archives.neohapsis.com/archives/vulnwatch/2002-q4/...

mailing-listx_refsource_VULNWATCH

http://www.securityfocus.com/bid/6045

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Nov 4, 2002
Vulnerability Reserved
Oct 14, 2002