• info
• discussion
• exploit
• solution
• references

Kiwi CatTools TFTP Directory Traversal Vulnerability

Kiwi CatTools is prone to a directory-traversal vulnerability because it fails to properly sanitize user-supplied input.

An attacker can exploit this vulnerability to retrieve or write arbitrary files on vulnerable computers in the context of the affected application. This may aid in further attacks.

This issue affects versions 2.0.0 through 3.2.8.