Bugtraq mailing list archives
IBM TFTP Server for Java vulnerability
From: "Patrick Medhurst" <Patrick () spm org za>
Date: Fri, 20 Jul 2001 13:31:11 +0200
Vulnerability: The IBM alphaWorks TFTP Server for Java available at http://alphaworks.ibm.com/tech/TFTP is vulnerable to a standard directory traversal attack (i.e. ../../). Vendor Response: The vendor was contacted on 19 June 2001 and responded on 20 June 2001 as follows: "We will take a look at the issue and fix it as soon as possible". Further correspondence requesting when a fix will be released has been ignored. Solution: None.
Current thread:
- IBM TFTP Server for Java vulnerability Patrick Medhurst (Jul 20)
- Re: IBM TFTP Server for Java vulnerability John Schultz (Jul 23)
- Re: IBM TFTP Server for Java vulnerability David Howe (Jul 23)
- Re: IBM TFTP Server for Java vulnerability John Schultz (Jul 23)
- <Possible follow-ups>
- RE: IBM TFTP Server for Java vulnerability McHugh, Sean (Jul 23)
- Re: IBM TFTP Server for Java vulnerability John Schultz (Jul 23)