Vulnerability Details CVE-2001-0783
Cisco TFTP server 1.1 allows remote attackers to read arbitrary files via a ..(dot dot) attack in the GET command.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 78.1%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/bugtraq/2001-06/0227.html
- http://www.securityfocus.com/bid/2886
- http://www.sentry-labs.com/files/cisco0201061701.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6722
- http://archives.neohapsis.com/archives/bugtraq/2001-06/0227.html
- http://www.securityfocus.com/bid/2886
- http://www.sentry-labs.com/files/cisco0201061701.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6722
Products affected by CVE-2001-0783
-
cpe:2.3:a:cisco:tftp_server:1.1