Intrusion PreventionKiwi.CatTools.TFTP.Directory.Traversal
Description
This indicates an attack attempt against a Directory Traversal vulnerability in Kiwi CatTools.
This is caused by the vulnerable application's failure to sanitize user supplied input. A successful attack may allow a remote attacker to view arbitrary local files and directories within the context of the webserver.
Affected Products
Kiwi CatTools 3.2.8
Kiwi CatTools 3.1
Kiwi CatTools 2.0
Kiwi CatTools 3.2.0 beta
Impact
Information disclosure: Attackers may be able to bypass security restrictions and compromise vulnerable systems.
Recommended Actions
The vendor released an update to address this issue. Please contact the vendor for information on how to obtain and apply this update.
Kiwi CatTools 3.2.0 beta
Kiwi Kiwi_CatTools_TFTP_Upgrade_1.0.0.8.Setup.exe
Kiwi CatTools 2.0
Kiwi Kiwi_CatTools_TFTP_Upgrade_1.0.0.8.Setup.exe
Kiwi CatTools 3.1
Kiwi Kiwi_CatTools_TFTP_Upgrade_1.0.0.8.Setup.exe
Kiwi CatTools 3.2.8
Kiwi Kiwi_CatTools_TFTP_Upgrade_1.0.0.8.Setup.exe
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
| ID | 30421 |
| Created | Jan 19, 2012 |
| Updated | Nov 15, 2021 |
| Risk |
|
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | Other |