6.4
CVSSv2

CVE-2002-2353

Published: 31/12/2002 Updated: 20/11/2024

Vulnerability Summary

tftpd32 2.50 and 2.50.2 allows remote malicious users to read or write arbitrary files via a full pathname in GET and PUT requests.

Vulnerable Product Search on Vulmon Subscribe to Product

tftpd32 tftpd32 2.50

tftpd32 tftpd32 2.50.2

Exploits

source: wwwsecurityfocuscom/bid/6198/info A vulnerability has been discovered in Tftpd32 which allows a remote attacker to download and upload arbitrary system files The ability to upload system files may allow an attacker to replaced key system files with trojaned copies, used to open backdoors into a target system tftp host GET /boo ...