CVE-2001-0783
5
CVSS SCORE
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Description
Cisco TFTP server 1.1 allows remote attackers to read arbitrary files via a ..(dot dot) attack in the GET command.
CVSS Vector Details
Attack Vector
Network
Attack Complexity
Low
Confidentiality
P
Integrity
None
Availability
None
Affected Software Configurations
- a cisco tftp_server 1.1 * * * * * * *
Weaknesses (CWE)
- NVD-CWE-Other
References & External Links
- http://archives.neohapsis.com/archives/bugtraq/2001-06/0227.html
- http://www.securityfocus.com/bid/2886
- http://www.sentry-labs.com/files/cisco0201061701.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6722
- http://archives.neohapsis.com/archives/bugtraq/2001-06/0227.html
- http://www.securityfocus.com/bid/2886
- http://www.sentry-labs.com/files/cisco0201061701.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6722