← back
CVE-2012-6664

CVE-2012-6664

CVSS 9.1 CRITICALEPSS 29.5%CWE-22
Multiple directory traversal vulnerabilities in the TFTP Server in Distinct Intranet Servers 3.10 and earlier allow remote attackers to read or write arbitrary files via a .. (dot dot) in the (1) get or (2) put commands.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/41714unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.exploit-db.com/exploits/41714https://www.fortiguard.com/encyclopedia/ips/48021