Lucene search

[email protected]CVE-2008-1611

HistoryApr 01, 2008 - 4:44 p.m.

CVE-2008-1611

2008-04-0116:44:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2008-1611

tftp server

buffer overflow

denial of service

execute arbitrary code

windows

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.1 High

AI Score

Confidence

High

0.377 Low

EPSS

Percentile

97.2%

JSON

Stack-based buffer overflow in TFTP Server SP 1.4 for Windows allows remote attackers to cause a denial of service or execute arbitrary code via a long filename in a read or write request.

Affected configurations

NVD

Node

tftp-serverwinagents_tftp_serverMatchsp_1.4windows

CPENameOperatorVersion
tftp-server:winagents_tftp_servertftp-server winagents tftp servereqsp_1.4

CPE	Name	Operator	Version
tftp-server:winagents_tftp_server	tftp-server winagents tftp server	eq	sp_1.4

References

secunia.com/advisories/29508

www.offensive-security.com/0day/sourceforge-tftpd.py.txt

www.securityfocus.com/bid/28462

exchange.xforce.ibmcloud.com/vulnerabilities/41496

www.exploit-db.com/exploits/5314

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.1 High

AI Score

Confidence

High

0.377 Low

EPSS

Percentile

97.2%

JSON

Related for CVE-2008-1611

cvelist1 packetstorm1 openvas1 prion1 nvd1