• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Shuttle FTP Suite TFTP Server Directory Traversal Vulnerability

It is reported that the Shuttle FTP Suite TFTP server is susceptible to a directory traversal vulnerability.

This vulnerability allows a remote attacker to read and write files outside of the TFTP document root directory. An attacker may read and write files with the privileges of the TFTP server process.

An attacker may retrieve or overwrite sensitive files on the hosting computer, potentially aiding them in further system compromise.

Version 3.2 has been reported susceptible to this vulnerability. Other versions may also be affected.