Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tftp-server vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2007-1435
Buffer overflow in D-Link TFTP Server 1.0 allows remote malicious users to cause a denial of service (crash) via a long (1) GET or (2) PUT request, which triggers memory corruption. NOTE: the provenance of this information is unknown; the details are obtained solely from third pa...
D-link Tftp Server 1.0
2 EDB exploits
7.3
CVSSv2
CVE-2007-1404
tftpd.exe in ProSysInfo TFTP Server TFTPDWIN 0.4.2 allows remote malicious users to cause a denial of service via a long UDP packet that is not properly handled in a recv_from call. NOTE: this issue might be related to CVE-2006-4948.
Prosysinfo Tftp Server Tftpdwin 0.4.2
2 EDB exploits
10
CVSSv2
CVE-2007-0888
Directory traversal vulnerability in the TFTP server in Kiwi CatTools prior to 3.2.0 beta allows remote malicious users to read arbitrary files, and upload files to arbitrary locations, via ..// (dot dot) sequences in the pathname argument to an FTP (1) GET or (2) PUT command.
Kiwi Enterprises Kiwi Cattools
1 EDB exploit
7.5
CVSSv2
CVE-2006-5584
The Remote Installation Service (RIS) in Microsoft Windows 2000 SP4 uses a TFTP server that allows anonymous access, which allows remote malicious users to upload and overwrite arbitrary files to gain privileges on systems that use RIS.
Microsoft Windows 2000
10
CVSSv2
CVE-2006-6184
Multiple stack-based buffer overflows in Allied Telesyn TFTP Server (AT-TFTP) 1.9, and possibly earlier, allow remote malicious users to cause a denial of service (crash) or execute arbitrary code via a long filename in a (1) GET or (2) PUT command.
Alliedtelesyn At-tftp
4 EDB exploits
2 Github repositories
7.5
CVSSv2
CVE-2006-4948
Stack-based buffer overflow in tftpd.exe in ProSysInfo TFTP Server TFTPDWIN 0.4.2 and previous versions allows remote malicious users to execute arbitrary code or cause a denial of service via a long file name. NOTE: the provenance of this information is unknown; the details are ...
Prosysinfo Tftp Server Tftpdwin
3 EDB exploits
7.5
CVSSv2
CVE-2006-4781
Heap-based buffer overflow in FutureSoft TFTP Server Multithreaded (MT) 1.1 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code by sending a crafted packet to port 69/UDP, which triggers the overflow when constructing an absolute ...
Futuresoft Tftp Server Multithreaded 1.1
1 EDB exploit
10
CVSSv2
CVE-2006-3498
Stack-based buffer overflow in bootpd in the DHCP component for Apple Mac OS X 10.3.9 and 10.4.7 allows remote malicious users to execute arbitrary code via a crafted BOOTP request.
Apple Mac Os X 10.3.9
Apple Mac Os X 10.4.7
Apple Mac Os X Server 10.3.9
Apple Mac Os X Server 10.4.7
5
CVSSv2
CVE-2006-3288
Unspecified vulnerability in the TFTP server in Cisco Wireless Control System (WCS) for Linux and Windows prior to 3.2(51), when configured to use a directory path name that contains a space character, allows remote authenticated users to read and overwrite arbitrary files via un...
Cisco Wireless Control System
5
CVSSv2
CVE-2006-1951
Directory traversal vulnerability in SolarWinds TFTP Server 8.1 and previous versions allows remote malicious users to download arbitrary files via a crafted GET request including "....//" sequences, which are collapsed into "../" sequences by filtering.
Solarwinds Tftp Server 5.0.55 Standard
Solarwinds Tftp Server 5.0.60standard
Solarwinds Tftp Server 8.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »