|Category:||Remote file access|
|Title:||Avaya IP Office Manager TFTP Server Directory Traversal Vulnerability|
|Summary:||The host is running Avaya IP Office Manager TFTP Server and is; prone to directory traversal vulnerability.|
The host is running Avaya IP Office Manager TFTP Server and is
prone to directory traversal vulnerability.
The flaw is due to an error while handling certain requests containing
'dot dot' sequences (..), which can be exploited to download arbitrary files from the host system.
Successful exploitation will allow attackers to read arbitrary files on the
Avaya IP Office Manager TFTP Server Version 8.1 and prior.
Apply the patch from the referenced advisory.
BugTraq ID: 48272|
|Copyright||Copyright (C) 2011 Greenbone Networks GmbH|
|This is only one of 87302 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.