Directory traversal

Directory traversal vulnerability in 2X TFTP service TFTPd.exe 3.2.0.0 and earlier in 2X ThinClientServer 5.0sp1-r3497 and earlier allows remote attackers to read or overwrite arbitrary files via a ... dot dot dot in the filename...

CVE-2008-1620

Directory traversal vulnerability in 2X TFTP service TFTPd.exe 3.2.0.0 and earlier in 2X ThinClientServer 5.0sp1-r3497 and earlier allows remote attackers to read or overwrite arbitrary files via a ... dot dot dot in the filename...

2xthinclient-traverse.txt

Luigi Auriemma Application: 2X ThinClientServer http://www.2x.com/thinclientserver/ Versions: From the manual: "2X ThinClientServer allows you to deploy a thin client OS to low-cost thin client devices and existing PCs, and centrally manage settings and configure to which terminal servers Windows...

2X ThinClientServer 5.0 sp1-r3497 TFTP Service - Directory Traversal

source: https://www.securityfocus.com/bid/28504/info 2X ThinClientServer is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting this issue allows an attacker to access arbitrary files outside of the TFTP application's root...

CVE-2006-6221

2X ThinClientServer Enterprise Edition before 4.0.2248 allows remote attackers to create multiple privileged accounts via a replay attack using the initial account creation request...

CVE-2006-6221

2X ThinClientServer Enterprise Edition prior to 4.0.2248 is vulnerable: an unauthenticated remote attacker can trigger a replay of the initial account creation request to create multiple administrative accounts. Root cause is an unauthenticated, replayable account-creation flow that allows adding...

CVE-2006-6221

2X ThinClientServer Enterprise Edition before 4.0.2248 allows remote attackers to create multiple privileged accounts via a replay attack using the initial account creation request...