Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6195

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2008-6195
Last Modified 26 Feb 2009 02:06:15
Published 19 Feb 2009 07:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6195

Summary

Directory traversal vulnerability in the PXE TFTP Service (PXEMTFTP.exe) in LANDesk Management Suite (LDMS) 8.80.1.1 and earlier allows remote attackers to read arbitrary files via a subdirectory name followed by ".." sequences, a different vulnerability than CVE-2008-1643.

Vulnerable Systems

Application

  • Landesk Management Suite 8.7

  • Landesk Management Suite 8.80.1.1


References

CONFIRM - http://community.landesk.com/support/docs/DOC-2659

XF - landesk-pxemtftp-directory-traversal(48852)

BID - 28577

BUGTRAQ - 20080402 Directory traversal in LANDesk Management Suite 8.80.1.1


Last Updated: 27 May 2016 10:49:06