Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-2353

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2002-2353
Last Modified 24 Nov 2009 12:15:50
Published 31 Dec 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-2353

Summary

tftpd32 2.50 and 2.50.2 allows remote attackers to read or write arbitrary files via a full pathname in GET and PUT requests.

Vulnerable Systems

Application

  • Tftpd32 2.50

  • Tftpd32 2.50.2


References

CERT-VN - VU#632633

BID - 6198

MISC - http://www.securiteam.com/windowsntfocus/6D00D2061G.html

XF - tftp32-directory-traversal(10646)

CONFIRM - http://tftpd32.jounin.net/


Last Updated: 27 May 2016 10:37:42