CVE-2006-1951
CVE-2006-1951
Directory traversal vulnerability in SolarWinds TFTP Server 8.1 and earlier allows remote attackers to download arbitrary files via a crafted GET request including "....//" sequences, which are collapsed into "../" sequences by filtering.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://archives.neohapsis.com/archives/vulnwatch/2006-q2/0009.htmlhttp://secunia.com/advisories/19848http://securityreason.com/securityalert/778https://exchange.xforce.ibmcloud.com/vulnerabilities/25969http://www.rapid7.com/advisories/R7-0019.htmlhttp://www.securityfocus.com/archive/1/431729/100/0/threadedhttp://www.securityfocus.com/bid/17648http://www.vupen.com/english/advisories/2006/1561