Security Hero Rotating Header Image

CiscoWorks TFTP Directory Traversal Vulnerability, (Wed, May 20th)

CiscoWorks TFTP Directory Traversal Vulnerability, (Wed, May 20th)

Cisco has announced that a directory traversal flaw has been discovered in its CiscoWorks product line. According to the announcement:
Products that have TFTP services enabled and that run CiscoWorks

Common Services versions 3.0.x, 3.1.x, and 3.2.x are vulnerable.

Only CiscoWorks Common Services systems running on Microsoft Windows

operating systems are affected.

A successful exploitation of this vulnerability may allow an attacker

unauthorized access to view or modify application and host operating

system files. Modification of some system files could result in a denial

of service condition.
More information and a complete list of vulnerable products is available from:

www.cisco.com/warp/public/707/cisco-sa-20090520-cw.shtml /> www.us-cert.gov/current/index.html#cisco_releases_security_advisory_for10 />

URL: http://isc.sans.org/diary.php?storyid=6424&rss

Leave a Reply

Powered by WP Hashcash

Spam Protection by WP-SpamFree

Bad Behavior has blocked 565 access attempts in the last 7 days.