Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tftp server vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2006-1952
Directory traversal vulnerability in WinAgents TFTP Server for Windows 3.1 and previous versions allows remote malicious users to read arbitrary files via "..." (triple dot) sequences in a GET request.
Winagents Tftp Server
NA
CVE-2023-29930
An issue was found in Genesys CIC Polycom phone provisioning TFTP Server all version allows a remote malicious user to execute arbitrary code via the login crednetials to the TFTP server configuration page.
Genesys Tftp Server
1 Github repository
7.8
CVSSv2
CVE-2011-4722
Directory traversal vulnerability in the TFTP Server 1.0.0.24 in Ipswitch WhatsUp Gold allows remote malicious users to read arbitrary files via a .. (dot dot) in the Filename field of an RRQ operation.
Ipswitch Tftp Server 1.0.0.24
1 EDB exploit
5
CVSSv2
CVE-2010-1174
Cisco TFTP Server 1.1 allows remote malicious users to cause a denial of service (daemon crash) via a crafted (1) read (aka RRQ) or (2) write (aka WRQ) request, or other TFTP packet. NOTE: some of these details are obtained from third party information.
Cisco Tftp Server 1.1
1 EDB exploit
5
CVSSv2
CVE-2010-2115
SolarWinds TFTP Server 10.4.0.10 allows remote malicious users to cause a denial of service (no new connections) via a crafted read request.
Solarwinds Tftp Server 10.4.0.10
1 EDB exploit
5
CVSSv2
CVE-2001-0783
Cisco TFTP server 1.1 allows remote malicious users to read arbitrary files via a ..(dot dot) attack in the GET command.
Cisco Tftp Server 1.1
5
CVSSv2
CVE-2002-1209
Directory traversal vulnerability in SolarWinds TFTP Server 5.0.55, and possibly earlier, allows remote malicious users to read arbitrary files via "..\" (dot-dot backslash) sequences in a GET request.
Solarwinds Tftp Server 5.0.55 Standard
1 EDB exploit
7.5
CVSSv2
CVE-2006-4948
Stack-based buffer overflow in tftpd.exe in ProSysInfo TFTP Server TFTPDWIN 0.4.2 and previous versions allows remote malicious users to execute arbitrary code or cause a denial of service via a long file name. NOTE: the provenance of this information is unknown; the details are ...
Prosysinfo Tftp Server Tftpdwin
3 EDB exploits
5
CVSSv2
CVE-2002-1542
SolarWinds TFTP server 5.0.55 and previous versions allows remote malicious users to cause a denial of service (crash) via a large UDP datagram, possibly triggering a buffer overflow.
Solarwinds Tftp Server 5.0.55 Standard
1 EDB exploit
5
CVSSv2
CVE-2010-2310
SolarWinds TFTP Server 10.4.0.13 allows remote malicious users to cause a denial of service (crash) via a long write request.
Solarwinds Tftp Server 10.4.0.13
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »