3 matches found
Remote code execution
A vulnerability has been identified in SINEC NMS All versions V2.0 SP1. The affected application allows users to upload arbitrary files via TFTP. This could allow an attacker to upload malicious firmware images or other files, that could potentially lead to remote code execution...
CVE-2012-0365
Cisco SRP 500 Series devices (including SRP 521W/526W/527W and SRP 521W-U/526W-U/527W-U; and SRP 541W/546W/547W) with firmware before 1.1.26 (520 series) or before 1.2.4 (520W‑U and 540 series) are affected by CVE-2012-0365. The vulnerability is a directory traversal in the Local TFTP file-upload...
CVE-2012-0365
Directory traversal vulnerability in the Local TFTP file-upload application on Cisco SRP 520 series devices with firmware before 1.1.26 and SRP 520W-U and 540 series devices with firmware before 1.2.4 allows remote authenticated users to upload software to arbitrary directories via unspecified...