Moderate

CVE-2009-0271 - Path Traversal vulnerability in Fujitsu Systemcastwizard Lite

Publication: 2009-01-26
Summary

Directory traversal vulnerability in the TFTP service in Fujitsu SystemcastWizard Lite 2.0A, 2.0, 1.9, and earlier allows remote attackers to read arbitrary files via directory traversal sequences in unspecified vectors.

Classification
CWE-22: Path Traversal

Risk level (CVSS 5)

Moderate

5.0

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

Affected Products

  • Fujitsu Systemcastwizard Lite 1.7
  • Fujitsu Systemcastwizard Lite 1.8
  • Fujitsu Systemcastwizard Lite 1.8a
  • Fujitsu Systemcastwizard Lite 1.9
  • Fujitsu Systemcastwizard Lite 2.0
  • Fujitsu Systemcastwizard Lite 2.0a