Vulnerability Details CVE-2005-1813
Directory traversal vulnerability in FutureSoft TFTP Server Evaluation Version 1.0.0.1 allows remote attackers to read arbitrary files via a TFTP GET request containing (1) "../" (dot dot slash) or (2) "..\" (dot dot backslash) sequences.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 60.9%
CVSS Severity
CVSS v2 Score 7.8
References
- http://secunia.com/advisories/15539
- http://securitytracker.com/id?1014079
- http://www.security.org.sg/vuln/tftp2000-1001.html
- http://www.securityfocus.com/bid/13821
- http://secunia.com/advisories/15539
- http://securitytracker.com/id?1014079
- http://www.security.org.sg/vuln/tftp2000-1001.html
- http://www.securityfocus.com/bid/13821
Products affected by CVE-2005-1813
-
cpe:2.3:a:futuresoft:tftp_server_2000:1.0.0.1