Lucene search

MitreCVE-2005-1813

HistoryJun 01, 2005 - 4:00 a.m.

CVE-2005-1813

2005-06-0104:00:00

CWE-22

mitre

web.nvd.nist.gov

futuresoft

tftp server

directory traversal

vulnerability

remote attack

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

AI Score

7.1

Confidence

Low

EPSS

0.005

Percentile

76.7%

JSON

Directory traversal vulnerability in FutureSoft TFTP Server Evaluation Version 1.0.0.1 allows remote attackers to read arbitrary files via a TFTP GET request containing (1) “…/” (dot dot slash) or (2) "…" (dot dot backslash) sequences.

Affected configurations

Nvd

Node

futuresofttftp_server_2000Match1.0.0.1

VendorProductVersionCPE
futuresofttftp_server_20001.0.0.1cpe:2.3:a:futuresoft:tftp_server_2000:1.0.0.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
futuresoft	tftp_server_2000	1.0.0.1	cpe:2.3:a:futuresoft:tftp_server_2000:1.0.0.1:::::::*

References

secunia.com/advisories/15539

securitytracker.com/id?1014079

www.security.org.sg/vuln/tftp2000-1001.html

www.securityfocus.com/bid/13821

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

AI Score

7.1

Confidence

Low

EPSS

0.005

Percentile

76.7%

JSON

Related for CVE-2005-1813