CVE-2007-0888
published 2007-02-12CVE-2007-0888: Directory traversal vulnerability in the TFTP server in Kiwi CatTools before 3.2.0 beta allows remote attackers to read arbitrary files, and upload files to…
PriorityP349critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
4.97%
91.1th percentile
Directory traversal vulnerability in the TFTP server in Kiwi CatTools before 3.2.0 beta allows remote attackers to read arbitrary files, and upload files to arbitrary locations, via ..// (dot dot) sequences in the pathname argument to an FTP (1) GET or (2) PUT command.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-4mxr-m7f4-fxh7: Directory traversal vulnerability in the TFTP server in Kiwi CatTools before 3
ghsa_unreviewed·2022-05-01
CVE-2007-0888 [HIGH] GHSA-4mxr-m7f4-fxh7: Directory traversal vulnerability in the TFTP server in Kiwi CatTools before 3
Directory traversal vulnerability in the TFTP server in Kiwi CatTools before 3.2.0 beta allows remote attackers to read arbitrary files, and upload files to arbitrary locations, via ..// (dot dot) sequences in the pathname argument to an FTP (1) GET or (2) PUT command.
VMware
Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues
vendor_vmware·2008-06-04·CVSS 2.6
CVE-2006-1721 [LOW] Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues
VMSA-2008-0009: Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues
Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues VMware Security Advisory VMware Security AdvisoryAdvisory ID: VMware Security AdvisorySynopsis: Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues VMware Security AdvisoryIssue date: VMware Security AdvisoryUpdated on:
CVEs: CVE-2006-1721, CVE-2007-4772, CVE-2007-5378, CVE-2007-5671, CVE-2008-0062, CVE-2008-0063, CVE-2008-0553, CVE-2008-0888, CVE-2
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/24103http://securityreason.com/securityalert/2236http://www.kiwisyslog.com/kb/idx/5/178/article/http://www.osvdb.org/33162http://www.securityfocus.com/archive/1/459500/100/0/threadedhttp://www.securityfocus.com/archive/1/459933/100/0/threadedhttp://www.securityfocus.com/bid/22490http://www.vupen.com/english/advisories/2007/0536https://exchange.xforce.ibmcloud.com/vulnerabilities/32398http://secunia.com/advisories/24103http://securityreason.com/securityalert/2236http://www.kiwisyslog.com/kb/idx/5/178/article/http://www.osvdb.org/33162http://www.securityfocus.com/archive/1/459500/100/0/threadedhttp://www.securityfocus.com/archive/1/459933/100/0/threadedhttp://www.securityfocus.com/bid/22490http://www.vupen.com/english/advisories/2007/0536https://exchange.xforce.ibmcloud.com/vulnerabilities/32398
2007-02-12
Published