Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tftp-server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-1310
Directory traversal vulnerability in the TFTP server in PacketTrap Networks pt360 Tool Suite 1.1.33.1.0, and other versions prior to 2.0.3900.0, allows remote malicious users to read and overwrite arbitrary files via directory traversal sequences in the pathname.
Packettrap Pt360 Tool Suite 1.1.33.1.0
NA
CVE-1999-1421
NBase switches NH208 and NH215 run a TFTP server which allows remote malicious users to send software updates to modify the switch or cause a denial of service (crash) by guessing the target filenames, which have default names.
N-base Nh208
N-base Nh215
5.3
CVSSv3
CVE-2017-6805
Directory traversal vulnerability in the TFTP server in MobaXterm Personal Edition 9.4 allows remote malicious users to read arbitrary files via a .. (dot dot) in a GET command.
Mobatek Mobaxterm 9.4
1 EDB exploit
7.5
CVSSv3
CVE-2017-7183
The TFTP server in ExtraPuTTY 0.30 and previous versions allows remote malicious users to cause a denial of service (crash) via a large (1) read or (2) write TFTP protocol message.
Extraputty Extraputty
1 EDB exploit
7.5
CVSSv3
CVE-2002-1810
D-Link DWL-900AP+ Access Point 2.1 and 2.2 allows remote malicious users to access the TFTP server without authentication and read the config.img file, which contains sensitive information such as the administrative password, the WEP encryption keys, and network configuration inf...
Dlink Dwl-900ap\\+ Firmware 2.1
Dlink Dwl-900ap\\+ Firmware 2.2
NA
CVE-2008-1312
Unspecified vulnerability in the TFTP server in PacketTrap Networks pt360 Tool Suite 1.1.33.1.0, and other versions prior to 2.0.3900.0, allows remote malicious users to cause a denial of service (daemon crash) via a long TFTP packet, a different vulnerability than CVE-2008-1311.
Packettrap Pt360 Tool Suite
Packettrap Pt360 Tool Suite 1.1.33.1.0
NA
CVE-2004-0952
HP-UX B.11.00 through B.11.23, when running Ignite-UX and using the add_new_client command, causes the TFTP server to set world-writable permissions on part of the directory tree, which allows remote malicious users to modify data or cause disk consumption.
Hp Hp-ux 11.11
Hp Hp-ux 11.22
Hp Hp-ux 11.00
Hp Hp-ux 11.23
NA
CVE-2007-0888
Directory traversal vulnerability in the TFTP server in Kiwi CatTools prior to 3.2.0 beta allows remote malicious users to read arbitrary files, and upload files to arbitrary locations, via ..// (dot dot) sequences in the pathname argument to an FTP (1) GET or (2) PUT command.
Kiwi Enterprises Kiwi Cattools
1 EDB exploit
7.5
CVSSv3
CVE-2017-9024
Secure Bytes Cisco Configuration Manager, as bundled in Secure Bytes Secure Cisco Auditor (SCA) 3.0, has a Directory Traversal issue in its TFTP Server, allowing malicious users to read arbitrary files via ../ sequences in a pathname.
Secure-bytes Secure Cisco Auditor 3.0
1 EDB exploit
NA
CVE-2013-0689
The TFTP server on the Emerson Process Management ROC800 RTU with software 3.50 and previous versions, DL8000 RTU with software 2.30 and previous versions, and ROC800L RTU with software 1.20 and previous versions allows remote malicious users to upload files and consequently exec...
Enea Ose
Emerson Roc 800l Remote Terminal Unit -
Emerson Roc 800 Remote Terminal Unit -
Emerson Dl 8000 Remote Terminal Unit -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »