Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tftp tftp vulnerabilities and exploits
(subscribe to this query)
7.3
CVSSv2
CVE-2007-1404
tftpd.exe in ProSysInfo TFTP Server TFTPDWIN 0.4.2 allows remote malicious users to cause a denial of service via a long UDP packet that is not properly handled in a recv_from call. NOTE: this issue might be related to CVE-2006-4948.
Prosysinfo Tftp Server Tftpdwin 0.4.2
2 EDB exploits
10
CVSSv2
CVE-2007-2639
Directory traversal vulnerability in TFTPdWin 0.4.2 allows remote malicious users to read or modify arbitrary files outside the TFTP root via unspecified vectors.
Prosysinfo Tftp Server Tftpdwin 0.4.2
1 EDB exploit
7.5
CVSSv2
CVE-2006-4781
Heap-based buffer overflow in FutureSoft TFTP Server Multithreaded (MT) 1.1 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code by sending a crafted packet to port 69/UDP, which triggers the overflow when constructing an absolute ...
Futuresoft Tftp Server Multithreaded 1.1
1 EDB exploit
7.8
CVSSv2
CVE-2005-1813
Directory traversal vulnerability in FutureSoft TFTP Server Evaluation Version 1.0.0.1 allows remote malicious users to read arbitrary files via a TFTP GET request containing (1) "../" (dot dot slash) or (2) "..\" (dot dot backslash) sequences.
Futuresoft Tftp Server 2000 1.0.0.1
10
CVSSv2
CVE-2009-1730
Multiple directory traversal vulnerabilities in NetMechanica NetDecision TFTP Server 4.2 allow remote malicious users to read or modify arbitrary files via directory traversal sequences in the (1) GET or (2) PUT command.
Netmechanica Netdecision Tftp Server 4.2
1 EDB exploit
7.5
CVSSv2
CVE-2008-1610
Stack-based buffer overflow in TallSoft Quick TFTP Server Pro 2.1 allows remote malicious users to cause a denial of service or execute arbitrary code via a long mode field in a read or write request.
Tallsoft Quick Tftp Server Pro 2.1
3 EDB exploits
5
CVSSv2
CVE-2011-4720
Hillstone HS TFTP Server 1.3.2 allows remote malicious users to cause a denial of service (daemon crash) via a long filename in a (1) RRQ or (2) WRQ operation.
Hillstone Software Hs Tftp Server 1.3.2
1 EDB exploit
10
CVSSv2
CVE-2006-6183
Multiple stack-based buffer overflows in 3Com 3CTftpSvc 2.0.1, and possibly earlier, allow remote malicious users to cause a denial of service (crash) or execute arbitrary code via a long mode field (aka transporting mode) in a (1) GET or (2) PUT command.
3com 3ctftpsvc
5 EDB exploits
7.1
CVSSv2
CVE-2002-0813
Heap-based buffer overflow in the TFTP server capability in Cisco IOS 11.1, 11.2, and 11.3 allows remote malicious users to cause a denial of service (reset) or modify configuration via a long filename.
Cisco Ios 11.1
Cisco Ios 11.2
Cisco Ios 11.3
1 EDB exploit
7.5
CVSSv2
CVE-2017-7237
The Spiceworks TFTP Server, as distributed with Spiceworks Inventory 7.5, allows remote malicious users to access the Spiceworks data\configurations directory by leveraging the unauthenticated nature of the TFTP service for all clients who can reach UDP port 69, as demonstrated b...
Spiceworks Spiceworks 7.5
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »