CVE-2012-0365

Currently unrated

Key Information:

Vendor: Cisco
Status: Small Business Srp520 Series Firmware; Small Business Srp521w; Small Business Srp526w; Small Business Srp527w
Vendor: CVE Published:; 25 February 2012

Summary

Directory traversal vulnerability in the Local TFTP file-upload application on Cisco SRP 520 series devices with firmware before 1.1.26 and SRP 520W-U and 540 series devices with firmware before 1.2.4 allows remote authenticated users to upload software to arbitrary directories via unspecified vectors, aka Bug ID CSCtw56009.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://www.securitytracker.com/id?1026736

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Feb 25, 2012
Vulnerability Reserved
Jan 4, 2012