exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

NetDecision TFTP Server 4.2 Directory Traversal

NetDecision TFTP Server 4.2 Directory Traversal
Posted May 19, 2009
Authored by princeofnigeria

NetDecision TFTP Server version 4.2 suffers from a remote directory traversal vulnerability.

tags | advisory, remote, file inclusion
SHA-256 | b736bded9776dd0d4a321e96d32de2b74f90c1b3fa4bc8f0f0893438de704c2e

NetDecision TFTP Server 4.2 Directory Traversal

Change Mirror Download
[--Vulnerability Summary--]

Title: NetDecision TFTP Server 4.2 TFTP Directory Traversal
Product: NetDecision TFTP Server 4.2

Discovered: April 1, 2009
Discovered by: Rob Kraus, princeofnigeria (PoN)

Vendor: NetMechanica
Vendor URL: https://www.netmechanica.com/downloads/
Vendor notification date: April 2, 2009 and May 12, 2009
Vendor response date: None
Vendor acknowledgement: No
Vendor provided fix: No
Release coordinated with the vendor: No response from vendor
Public disclosure date: May 16, 2009

Affects: NetDecision TFTP Server 4.2
Fixed in: N/A
Risk: MEDIUM

Vulnerability Description: NetDecision TFTP Server 4.2 is prone to a directory-traversal vulnerability because it fails to sanitize TFTP GET and PUT requests. By using a specially crafted TFTP request an attacker is capable of putting (PUT) and retrieving (GET) files outside of the TFTP root directory.

Impact: The ability to PUT and GET files outside of the TFTP root directory may allow an attacker to obtain more information about the underlying operating system and applications running on the host. Additionally, malicious code can be uploaded to the host operating system.

[--Background--]

Type of vulnerability: Input validation flaw
Who can exploit it: Local and remote users

Vulnerability Scope: The default installation of NetDecision TFTP Server 4.2 will allow exploitation of this vulnerability.

Keywords: security, vulnerability, tftp, directory traversal, princeofnigeria, gui, windows, server

[--Background--]

Type of vulnerability: Input validation flaw
Who can exploit it: Local and remote users

NetDecision TFTP Server 4.2 is an application that provides services for transferring configuration files, firmware files and other types of data using the TFTP protocol. The application should restrict PUT and GET requests to the contents of the TFTP root directory to prevent obtaining data from other parts of the host operating system or uploading malicious code.

Vulnerability Scope: The default installation of NetDecision TFTP Server 4.2 will allow exploitation of this vulnerability.

[--More Details--]

Exploitation of this flaw is trivial and can be executed using any RFC 1350 compliant TFTP client software. No exploit code is required.

[--Fix or Workaround Information--]

Patch availability: None
Vendor provided fix: None
Workarounds: None available at this time, design flaw. Discontinue use of this product until a stable patch is released.

[--Disclosure Policy--]

PrinceofNigeria.org Vulnerability Disclosure Policy
https://www.princeofnigeria.org/blogs/index.php/vulndev/vulnreleasepolicy/?blog=1

[--Disclosure History--]
Public disclosure date: May 16, 2009

[--References--]
CVE-ID:
Bugtraq ID:
Secunia ID:
OSVDB ID:

[--Author--]
Rob Kraus, princeofnigeria (PoN)
Website: www.princeofnigeria.org/blogs
Login or Register to add favorites

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    69 Files
  • 14
    Nov 14th
    0 Files
  • 15
    Nov 15th
    0 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close