4 matches found
CVE-2017-6805
Directory traversal vulnerability in the TFTP server in MobaXterm Personal Edition 9.4 allows remote attackers to read arbitrary files via a .. dot dot in a GET command...
CVE-2017-6805
CVE-2017-6805 : Affected product is MobaXterm Personal Edition 9.4. The issue is a directory traversal vulnerability in the TFTP server that can be triggered by a GET request containing .., allowing remote attackers to read arbitrary files. Public references (NVD, Nessus plugin, Exploit-DB entrie...
MobaXterm Personal Edition 9.4 Path Traversal
Credits: John Page AKA hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MOBAXTERM-TFTP-PATH-TRAVERSAL-REMOTE-FILE-ACCESS.txt + ISR: ApparitionSec Vendor: ===================== mobaxterm.mobatek.net Product: ===============================...
CVE-2017-6805
creationtimestamp| type| source ---|---|--- 2017-03-11 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41592...