Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2009-0271

Directory traversal vulnerability in the TFTP service in Fujitsu SystemcastWizard Lite 2.0A, 2.0, 1.9, and earlier allows remote attackers to read arbitrary files via directory traversal sequences in unspecified vectors.

Published

2009-01-26T19:30:00.483

Last Modified

2025-04-09T00:30:58.490

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 5.0 (MEDIUM)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: NONE
Availability Impact: NONE

Exploitability Score

10.0

Impact Score

2.9

Weaknesses

Type: Primary
CWE-22

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	fujitsu	systemcastwizard_lite	1.7	Yes
Application	fujitsu	systemcastwizard_lite	1.8	Yes
Application	fujitsu	systemcastwizard_lite	1.8a	Yes
Application	fujitsu	systemcastwizard_lite	1.9	Yes
Application	fujitsu	systemcastwizard_lite	2.0	Yes
Application	fujitsu	systemcastwizard_lite	2.0a	Yes

References

http://osvdb.org/51487 ([email protected])
http://secunia.com/advisories/33594 Vendor Advisory ([email protected])
http://www.fujitsu.com/global/services/computing/server/primequest/products/os/windows-server-2008-2.html Patch, Vendor Advisory ([email protected])
http://www.securityfocus.com/bid/33344 Patch ([email protected])
http://www.vupen.com/english/advisories/2009/0176 ([email protected])
http://osvdb.org/51487 (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/33594 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.fujitsu.com/global/services/computing/server/primequest/products/os/windows-server-2008-2.html Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/33344 Patch (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2009/0176 (af854a3a-2127-422b-91ae-364da2661108)