22 matches found
CVE-2025-67433
A heap buffer overflow in the processRequest function of Open TFTP Server MultiThreaded v1.7 allows attackers to cause a Denial of Service DoS via a crafted DATA packet...
CVE-2025-67433
Open TFTP Server MultiThreaded v1.7 is affected by a heap buffer overflow in the processRequest function, leading to a Denial of Service when handling a crafted DATA packet. The description confirms the vulnerability and impact; details on affected versions beyond v1.7, exploit steps, scope, or a...
CVE-2025-67433
A heap buffer overflow in the processRequest function of Open TFTP Server MultiThreaded v1.7 allows attackers to cause a Denial of Service DoS via a crafted DATA packet...
CVE-2019-12567
Stack-based overflow vulnerability in the logMess function in Open TFTP Server MT 1.65 and earlier allows remote attackers to perform a denial of service or execute arbitrary code via a long TFTP error packet, a different vulnerability than CVE-2018-10387 and CVE-2019-12568...
CVE-2019-12568
Stack-based overflow vulnerability in the logMess function in Open TFTP Server SP 1.66 and earlier allows remote attackers to perform a denial of service or execute arbitrary code via a long TFTP error packet, a different vulnerability than CVE-2018-10387 and CVE-2019-12567...
EUVD-2019-4162
Malware in sbrugna...
EUVD-2019-4161
Malware in sbrugna...
EUVD-2020-18760
Malware in sbrugna...
CVE-2020-26130
Issues were discovered in Open TFTP Server multithreaded 1.66 and Open TFTP Server single port 1.66. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the OpenTFTPServerMT.exe or the OpenTFTPServerSP.exe binary...
CVE-2020-26130
Issues were discovered in Open TFTP Server multithreaded 1.66 and Open TFTP Server single port 1.66. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the OpenTFTPServerMT.exe or the OpenTFTPServerSP.exe binary...
Design/Logic Flaw
Issues were discovered in Open TFTP Server multithreaded 1.66 and Open TFTP Server single port 1.66. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the OpenTFTPServerMT.exe or the OpenTFTPServerSP.exe binary...
CVE-2020-26130
Issues were discovered in Open TFTP Server multithreaded 1.66 and Open TFTP Server single port 1.66. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the OpenTFTPServerMT.exe or the OpenTFTPServerSP.exe binary...
CVE-2020-26130
CVE-2020-26130 affects Open TFTP Server 1.66 in both multithreaded and single-port builds. The root cause is insufficient access restrictions in the default installation directory, enabling privilege escalation by replacing the OpenTFTPServerMT.exe (multithreaded) or OpenTFTPServerSP.exe (single-...
PT-2020-16304 · Multithreaded Studios · Open Tftp Server
Name of the Vulnerable Software and Affected Versions: Open TFTP Server multithreaded version 1.66 Open TFTP Server single port version 1.66 Description: The issue is related to insufficient access restrictions in the default installation directory of Open TFTP Server, allowing an attacker to...
CVE-2019-12567
Stack-based overflow vulnerability in the logMess function in Open TFTP Server MT 1.65 and earlier allows remote attackers to perform a denial of service or execute arbitrary code via a long TFTP error packet, a different vulnerability than CVE-2018-10387 and CVE-2019-12568...
CVE-2019-12568
Stack-based overflow vulnerability in the logMess function in Open TFTP Server SP 1.66 and earlier allows remote attackers to perform a denial of service or execute arbitrary code via a long TFTP error packet, a different vulnerability than CVE-2018-10387 and CVE-2019-12567...
Stack overflow
Stack-based overflow vulnerability in the logMess function in Open TFTP Server MT 1.65 and earlier allows remote attackers to perform a denial of service or execute arbitrary code via a long TFTP error packet, a different vulnerability than CVE-2018-10387 and CVE-2019-12568...
Stack overflow
Stack-based overflow vulnerability in the logMess function in Open TFTP Server SP 1.66 and earlier allows remote attackers to perform a denial of service or execute arbitrary code via a long TFTP error packet, a different vulnerability than CVE-2018-10387 and CVE-2019-12567...
CVE-2019-12568
Summary: CVE-2019-12568 is a stack-based overflow in the logMess function of Open TFTP Server SP (and related Red Hat advisories reference SP 1.66 and earlier). The vulnerability allows remote attackers to cause a denial of service or execute arbitrary code by sending an excessively long TFTP err...
CVE-2019-12568
Stack-based overflow vulnerability in the logMess function in Open TFTP Server SP 1.66 and earlier allows remote attackers to perform a denial of service or execute arbitrary code via a long TFTP error packet, a different vulnerability than CVE-2018-10387 and CVE-2019-12567...