First published: Tue Oct 29 2002(Updated: )
Directory traversal vulnerability in SolarWinds TFTP Server 5.0.55, and possibly earlier, allows remote attackers to read arbitrary files via "..\" (dot-dot backslash) sequences in a GET request.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
SolarWinds TFTP Server | =5.0.55_standard |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2002-1209 is classified as a medium severity vulnerability due to its potential for unauthorized file access.
To mitigate CVE-2002-1209, it is recommended to upgrade to the latest version of SolarWinds TFTP Server or apply any available patches.
CVE-2002-1209 can be exploited by remote attackers using directory traversal techniques to access sensitive files on the server.
CVE-2002-1209 affects SolarWinds TFTP Server version 5.0.55 and possibly earlier versions.
If upgrading is not possible, implement strict firewall rules and network segmentation to limit access to the TFTP server.