CVE-2012-0365

Directory traversal vulnerability in the Local TFTP file-upload application on Cisco SRP 520 series devices with firmware before 1.1.26 and SRP 520W-U and 540 series devices with firmware before 1.2.4 allows remote authenticated users to upload software to arbitrary directories via unspecified vectors, aka Bug ID CSCtw56009.

Severity	HIGH
CVSS	9.0
CWE	CWE-22
KEV
Published	14 years ago
Modified	2 weeks ago

Related Products

Product	Advisory
Cisco SRP500 Services Ready Platforms	cisco-sa-20120223-srp500
Cisco RV Series Routers	cisco-sa-20120223-srp500
Cisco Nexus Dashboard	cisco-sa-20120223-srp500
Cisco Meraki MS Series Switches	cisco-sa-20120223-srp500
Cisco Application Centric Infrastructure Virtual Edge	cisco-sa-20120223-srp500
Cisco Small Business SRP500 Series Services Ready Platforms	cisco-sa-20120223-srp500