CVE-2009-1730
Netmechanica Netdecision Tftp Server - Path Traversal
Title source: ruleDescription
Multiple directory traversal vulnerabilities in NetMechanica NetDecision TFTP Server 4.2 allow remote attackers to read or modify arbitrary files via directory traversal sequences in the (1) GET or (2) PUT command.
Exploits (3)
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/20392
metasploit
WORKING POC
by Rob Kraus, juan vazquez · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/tftp/netdecision_tftp.rb
metasploit
WORKING POC
EXCELLENT
by Rob Kraus, juan vazquez · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/tftp/netdecision_tftp_traversal.rb
References (4)
Scores
EPSS
0.7527
EPSS Percentile
98.9%
Details
CWE
CWE-22
Status
published
Products (1)
netmechanica/netdecision_tftp_server
4.2
Published
May 20, 2009
Tracked Since
Feb 18, 2026