>> LANDesk Management Suite PXE TFTP Directory Traversal Vulnerability
Title : LANDesk Management Suite PXE TFTP Directory Traversal Vulnerability VUPEN ID : VUPEN/ADV-2008-1051 CVE ID : CVE-2008-1643 - CVE-2008-6195
Rated as : Moderate Risk
Remotely Exploitable : Yes Locally Exploitable : Yes Release Date : 2008-04-01
Technical Description
A vulnerability has been identified in LANDesk Management Suite, which could be exploited by attackers to gain knowledge of sensitive information. This issue is caused by an input validation error in the PXE Representatives TFTP Service when processing user-supplied requests, which could be exploited to conduct directory traversal attacks and download arbitrary files from a vulnerable system.
