TFTPD32 2.50 - Arbitrary File Download/Upload
| EKU-ID: 27516 | CVE: CVE-2002-2353;OSVDB-57701 | OSVDB-ID: |
| Author: Aviram Jenik | Published: 2002-11-18 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 27516 | CVE: CVE-2002-2353;OSVDB-57701 | OSVDB-ID: |
| Author: Aviram Jenik | Published: 2002-11-18 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/6198/info A vulnerability has been discovered in Tftpd32 which allows a remote attacker to download and upload arbitrary system files. The ability to upload system files may allow an attacker to replaced key system files with trojaned copies, used to open backdoors into a target system. tftp host GET /boot.ini tftp host PUT myfile /boot.ini