SolarWinds TFTP Server Directory Traversal Vulnerability
BID:17648
Info
SolarWinds TFTP Server Directory Traversal Vulnerability
| Bugtraq ID: | 17648 |
| Class: | Input Validation Error |
| CVE: |
CVE-2006-1951 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 21 2006 12:00AM |
| Updated: | Apr 21 2006 10:26PM |
| Credit: | Rapid7 is credited with the discovery of this vulnerability. |
| Vulnerable: |
SolarWinds TFTP Server Standard Edition 5.0.55 SolarWinds TFTP Server Standard Edition 5.0 .60 SolarWinds TFTP Server 8.1 |
| Not Vulnerable: |
SolarWinds TFTP Server 8.2 |
Discussion
SolarWinds TFTP Server Directory Traversal Vulnerability
TFTP Server is prone to a directory-traversal vulnerability.
An attacker can exploit this issue to retrieve arbitrary files from the vulnerable computer in the context of the affected server process. This may facilitate a complete compromise of the affected computer because the application is typically run with SYSTEM privileges.
TFTP Server is prone to a directory-traversal vulnerability.
An attacker can exploit this issue to retrieve arbitrary files from the vulnerable computer in the context of the affected server process. This may facilitate a complete compromise of the affected computer because the application is typically run with SYSTEM privileges.
Exploit / POC
SolarWinds TFTP Server Directory Traversal Vulnerability
This issue can be exploited through a client application capable of using the TFTP protocol.
This issue can be exploited through a client application capable of using the TFTP protocol.
Solution / Fix
SolarWinds TFTP Server Directory Traversal Vulnerability
Solution:
This issue has been addressed in version 8.2 of the application.
Solution:
This issue has been addressed in version 8.2 of the application.
References
SolarWinds TFTP Server Directory Traversal Vulnerability
References:
References:
- Directory traversal vulnerability in SolarWinds TFTP Server for Windows (Rapid7)
- TFTP Server Homepage (SolarWinds)