CVE-2011-4722
Ipswitch TFTP Server 1.0.0.24 - Directory Traversal
Severity Score
7.5
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
4
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Directory traversal vulnerability in the TFTP Server 1.0.0.24 in Ipswitch WhatsUp Gold allows remote attackers to read arbitrary files via a .. (dot dot) in the Filename field of an RRQ operation.
Vulnerailidad de salto en disco en TFTP Server 1.0.0.24 en Ipswitch WhatsUp Gold permite a atacantes remotos leer ficheros arbitrarios a través de .. (punto punto) en el campo Filename de una operación RRQ
Directory traversal vulnerability in the TFTP Server 1.0.0.24 in Ipswitch WhatsUp Gold allows remote attackers to read arbitrary files via a .. (dot = dot) in the Filename field of an RRQ operation. Revision 1 of this advisory.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2011-12-02 First Exploit
- 2011-12-10 CVE Reserved
- 2014-12-28 CVE Published
- 2024-08-07 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CAPEC
References (10)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/47025 | Third Party Advisory | |
| http://securitytracker.com/id?1026368 | Vdb Entry | |
| http://www.osvdb.org/77455 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/71610 | Vdb Entry | |
| http://secpod.org/advisories/SecPod_Ipswitch_TFTP_Server_Dir_Trav.txt |
| URL | Date | SRC |
|---|---|---|
| https://packetstorm.news/files/id/180941 | 2024-08-31 | |
| https://www.exploit-db.com/exploits/18189 | 2011-12-02 | |
| http://secpod.org/blog/?p=424 | 2024-08-07 | |
| http://www.exploit-db.com/exploits/18189 | 2024-08-07 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://h20565.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c05054714 | 2017-08-29 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Ipswitch Search vendor "Ipswitch" | Tftp Server Search vendor "Ipswitch" for product "Tftp Server" | 1.0.0.24 Search vendor "Ipswitch" for product "Tftp Server" and version "1.0.0.24" | - |
Affected
| ||||||