790 matches found
[NT] WinAgents TFTP Server Remote DoS (Long Filename)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
WinAgentsTFTP.txt
WinAgents TFTP Server Long File Remote Denial Of Service Vulnerability Date: 10 June 2004 Security Alert ID: 1008084 Added by: HH Description: A vulnerability in WinAgents TFTP Server has been reported, allowing a remote user to cause the TFTP service to crash. It is reported that a remote user c...
WinAgents TFTP Server 3.0 - Remote Buffer Overrun
WinAgents TFTP Server 3.0 - Remote Buffer Overrun source: https://www.securityfocus.com/bid/10526/info WinAgents TFTP Server is reported prone to a remote off-by-one buffer overrun vulnerability. The issue is reported to exist due to a lack of sufficient boundary checks performed on filenames whe...
WinAgents TFTP Server 3.0 - Remote Buffer Overrun
source: https://www.securityfocus.com/bid/10526/info WinAgents TFTP Server is reported prone to a remote off-by-one buffer overrun vulnerability. The issue is reported to exist due to a lack of sufficient boundary checks performed on filenames when a request is made for a file. A remote attacker...
Foxmail 5.0 - 'PunyLib.dll' Remote Stack Overflow
/ fmx.c - x86/win32 Foxmail 5.0 PunyLib.dll remote stack buffer overflow exploit C COPYRIGHT XFOCUS Security Team, 2004 All Rights Reserved ----------------------------------------------------------------------- Author : xfocus : http://www.xfocus.org Maintain : XFOCUS Security Team Version : 0.2...
CVE-2003-1264
TFTP server in Longshine Wireless Access Point WAP LCS-883R-AC-B, and in D-Link DI-614+ 2.0 which is based on it, allows remote attackers to obtain the WEP secret and gain administrator privileges by downloading the configuration file config.img and other files without authentication...
[Full-Disclosure] Security Vulnerability in Tellurian TftpdNT (Long Filename)
Security Vulnerability in Tellurian TftpdNT Long Filename ------------------------------------------------------------------------ Article reference: http://www.securiteam.com/windowsntfocus/5RP0M1PAUM.html SUMMARY Tellurian TftpdNT http://www.tellurian.com.au/ is a TFTP server for Windows NT and...
CVE-2002-0813
CVE-2002-0813 corresponds to a heap-based buffer overflow in the TFTP server capability of Cisco IOS 11.1/11.2/11.3. The vulnerability can be triggered by a long TFTP read filename, allowing remote attackers to cause a denial of service (reset) or modify configuration. OpenVAS/Nessus entries desc...
CVE-2002-0813
Heap-based buffer overflow in the TFTP server capability in Cisco IOS 11.1, 11.2, and 11.3 allows remote attackers to cause a denial of service reset or modify configuration via a long filename...
CVE-2002-1542
SolarWinds TFTP server 5.0.55 and earlier allows remote attackers to cause a denial of service crash via a large UDP datagram, possibly triggering a buffer overflow...
CVE-2002-1542
The CVE refers to SolarWinds TFTP server 5.0.55 and earlier. Affected component: the TFTP server handling of UDP datagrams. Root cause: processing a large UDP datagram can cause a crash, with OpenVAS/NASL and Nessus entries describing the overflow risk. Documented impact: denial of service via se...
CVE-2002-1542
SolarWinds TFTP server 5.0.55 and earlier allows remote attackers to cause a denial of service crash via a large UDP datagram, possibly triggering a buffer overflow...
CVE-2002-2237
tftp32 TFTP server 2.21 and earlier allows remote attackers to cause a denial of service via a GET request with a DOS device name such as com1 or aux...
CVE-2002-1810
D-Link DWL-900AP+ Access Point 2.1 and 2.2 allows remote attackers to access the TFTP server without authentication and read the config.img file, which contains sensitive information such as the administrative password, the WEP encryption keys, and network configuration information...
CVE-2002-1968
Com21 DOXport 1100 series cable modem running firmware 2.1.1.106, and possibly other versions before 2.1.1.108.003, downloads a DOCSIS configuration file from a TFTP server running on the internal network, which allows local users to modify configuration of the modem via a malicious TFTP server...
PT-2002-2532 · D Link · D-Link Dwl-900Ap+ Access Point
Name of the Vulnerable Software and Affected Versions: D-Link DWL-900AP+ Access Point versions 2.1 through 2.2 Description: The issue allows remote attackers to access the TFTP server without authentication and read the config.img file. This file contains sensitive information, including the...
TFTPD32 Buffer Overflow Vulnerability (Long filename)
Advisory available at: http://www.securiteam.com/windowsntfocus/6C00C2061A.html TFTPD32 Buffer Overflow Vulnerability Long filename ------------------------------------------------------- SUMMARY http://tftpd32.jounin.net TFTPD32 is a Freeware TFTP server for Windows 9x/NT/XP. It provides an...
TFTPD32 Directory Traversal Vulnerability
Advisory available at: http://www.securiteam.com/windowsntfocus/6D00D2061G.html TFTPD32 Directory Traversal Vulnerability -------------------------------------------- SUMMARY http://tftpd32.jounin.net TFTPD32 is a Freeware TFTP server for windows 9x/NT/XP. It provides an implementation of the...
TFTPD32 2.50 - 'Filename' Remote Buffer Overflow
source: https://www.securityfocus.com/bid/6199/info A buffer-overflow vulnerability has been reported for Tftpd32. The vulnerability is due to insufficient checks on user-supplied input. A remote attacker can exploit this vulnerability by supplying a long string as a name of the file to retrieve...
CVE-2002-1209
Directory traversal vulnerability in SolarWinds TFTP Server 5.0.55, and possibly earlier, allows remote attackers to read arbitrary files via ".." dot-dot backslash sequences in a GET request...