Arbitrary File Read Vulnerability in Ipswitch WhatsUp Gold TFTP Server 1.0.0.24

Arbitrary File Read Vulnerability in Ipswitch WhatsUp Gold TFTP Server 1.0.0.24

CVE-2011-4722 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:N/A:N

Directory traversal vulnerability in the TFTP Server 1.0.0.24 in Ipswitch WhatsUp Gold allows remote attackers to read arbitrary files via a .. (dot dot) in the Filename field of an RRQ operation.

Learn more about our Cis Benchmark Audit For Server Software.