Search 202850 CVE descriptions
and 87302 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:Remote file access
Title:DSS TFTP Server Path Traversal Vulnerability
Summary:DSS TFTP Server is prone to a path traversal vulnerability.
DSS TFTP Server is prone to a path traversal vulnerability.

Vulnerability Insight:
DSS TFTP 1.0 Server is a simple TFTP server that allows user
to download/upload files through the TFTP service from/to specified tftp root directory. The application
is vulnerable to path traversal that enables attacker to download/upload files outside the tftp
root directory.

Vulnerability Impact:
Unauthenticated attackers can download/upload arbitrary files
outside the tftp root directory.

Affected Software/OS:
DSS TFTP 1.0 Server and below.

No known solution was made available for at
least one year since the disclosure of this vulnerability. Likely none will
be provided anymore. General solution options are to upgrade to a newer release,
disable respective features, remove the product or replace the product by another

CVSS Score:

CVSS Vector:

CopyrightCopyright (C) 2015 Greenbone Networks GmbH

This is only one of 87302 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2021 E-Soft Inc. All rights reserved.