Exploit LANDesk Management Suite 8.80.1.1 - PXE TFTP Service Directory Traversal

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
31591
Проверка EDB
  1. Пройдено
Автор
LUIGI AURIEMMA
Тип уязвимости
REMOTE
Платформа
LINUX
CVE
cve-2008-6195
Дата публикации
2008-04-02
Код:
source: https://www.securityfocus.com/bid/28577/info

LANDesk Management Suite is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data.

Exploiting this issue allows an attacker to access arbitrary files outside of the TFTP application's root directory. This can expose sensitive information that could help the attacker launch further attacks.

LANDesk Management Suite 8.80.1.1 is vulnerable; other versions may also be affected. 

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/31591.zip
 
Источник
www.exploit-db.com

Похожие темы