790 matches found
CVE-1999-1421
CVE-1999-1421 affects NBase switches NH208 and NH215 that run a TFTP server. The vulnerability arises from the TFTP service allowing remote attackers to influence software updates by guessing default target filenames, enabling modification of the switch or triggering a denial-of-service (crash). ...
CVE-1999-1421
NBase switches NH208 and NH215 run a TFTP server which allows remote attackers to send software updates to modify the switch or cause a denial of service crash by guessing the target filenames, which have default names...
Обратный путь в директориях IBM TFTP Server for Java (directory traversal)
Обратный путь в директориях позволяет обратиться к любому файлу...
IBM TFTP Server for Java vulnerability
Vulnerability: The IBM alphaWorks TFTP Server for Java available at http://alphaworks.ibm.com/tech/TFTP is vulnerable to a standard directory traversal attack i.e. ../../. Vendor Response: The vendor was contacted on 19 June 2001 and responded on 20 June 2001 as follows: "We will take a look at t...
CVE-2001-1265
Directory traversal vulnerability in IBM alphaWorks Java TFTP server 1.21 allows remote attackers to conduct unauthorized operations on arbitrary files via a .. dot dot attack...
CVE-2001-1426
Alcatel Speed Touch running firmware KHDSAA.108 and KHDSAA.132 through KHDSAA.134 has a TFTP server running without a password, which allows remote attackers to change firmware versions or the device's configurations...
CVE-2000-0015
CascadeView TFTP server allows local users to gain privileges via a symlink attack...
CVE-2000-0015
CVE-2000-0015 affects the CascadeView TFTP server. The vulnerability enables local privilege escalation via a symlink attack, with a CVSSv2 base score of 4.6 (Medium) and a Local attack vector, Low complexity, no authentication, and partial impacts to confidentiality, integrity, and availability....
CVE-2000-0015
CascadeView TFTP server allows local users to gain privileges via a symlink attack...
CVE-1999-1421
NBase switches NH208 and NH215 run a TFTP server which allows remote attackers to send software updates to modify the switch or cause a denial of service crash by guessing the target filenames, which have default names...