Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tftp-server vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2015-3294
The tcp_request function in Dnsmasq prior to 2.73rc4 does not properly handle the return value of the setup_reply function, which allows remote malicious users to read process memory and cause a denial of service (out-of-bounds read and crash) via a malformed DNS request.
Thekelleys Dnsmasq
Oracle Solaris 11.2
7.8
CVSSv2
CVE-2011-4722
Directory traversal vulnerability in the TFTP Server 1.0.0.24 in Ipswitch WhatsUp Gold allows remote malicious users to read arbitrary files via a .. (dot dot) in the Filename field of an RRQ operation.
Ipswitch Tftp Server 1.0.0.24
1 EDB exploit
5
CVSSv2
CVE-2011-4720
Hillstone HS TFTP Server 1.3.2 allows remote malicious users to cause a denial of service (daemon crash) via a long filename in a (1) RRQ or (2) WRQ operation.
Hillstone Software Hs Tftp Server 1.3.2
1 EDB exploit
5
CVSSv2
CVE-2011-4821
Directory traversal vulnerability in the TFTP server in D-Link DIR-601 Wireless N150 Home Router with firmware 1.02NA allows remote malicious users to read arbitrary files via unspecified vectors.
Dlink Dir-601 Firmware 1.02na
Dlink Dir-601 -
7.1
CVSSv2
CVE-2013-6704
Cisco IOS XE does not properly manage memory for TFTP UDP flows, which allows remote malicious users to cause a denial of service (memory consumption) via TFTP (1) client or (2) server traffic, aka Bug IDs CSCuh09324 and CSCty42686.
Cisco Ios Xe -
10
CVSSv2
CVE-2013-0689
The TFTP server on the Emerson Process Management ROC800 RTU with software 3.50 and previous versions, DL8000 RTU with software 2.30 and previous versions, and ROC800L RTU with software 1.20 and previous versions allows remote malicious users to upload files and consequently exec...
Enea Ose
Emerson Roc 800l Remote Terminal Unit -
Emerson Roc 800 Remote Terminal Unit -
Emerson Dl 8000 Remote Terminal Unit -
5
CVSSv2
CVE-2010-2310
SolarWinds TFTP Server 10.4.0.13 allows remote malicious users to cause a denial of service (crash) via a long write request.
Solarwinds Tftp Server 10.4.0.13
1 EDB exploit
5
CVSSv2
CVE-2010-2115
SolarWinds TFTP Server 10.4.0.10 allows remote malicious users to cause a denial of service (no new connections) via a crafted read request.
Solarwinds Tftp Server 10.4.0.10
1 EDB exploit
5
CVSSv2
CVE-2010-1174
Cisco TFTP Server 1.1 allows remote malicious users to cause a denial of service (daemon crash) via a crafted (1) read (aka RRQ) or (2) write (aka WRQ) request, or other TFTP packet. NOTE: some of these details are obtained from third party information.
Cisco Tftp Server 1.1
1 EDB exploit
5
CVSSv2
CVE-2009-3115
SolarWinds TFTP Server 9.2.0.111 and previous versions allows remote malicious users to cause a denial of service (service stop) via a crafted Option Acknowledgement (OACK) request. NOTE: some of these details are obtained from third party information.
Solarwinds Tftp Server 8.2
Solarwinds Tftp Server
Solarwinds Tftp Server 8.1
Solarwinds Tftp Server 5.0.55
Solarwinds Tftp Server 5.0.60
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »