Directory traversal vulnerability in SolarWinds TFTP Server 8.1 and previous versions allows remote malicious users to download arbitrary files via a crafted GET request including "....//" sequences, which are collapsed into "../" sequences by filtering.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
solarwinds tftp server 5.0.55_standard |
||
solarwinds tftp server 5.0.60standard |
||
solarwinds tftp server 8.1 |