2 matches found
TFTPD32 Request Filename Handling Error Format String Denial of Service - Ver2 (CVE-2006-0328)
A denial of service vulnerability has been reported in TFTPD32. The vulnerability is due to a format string error when processing a specially crafted GET request containing a malformed file-name. A remote attacker could exploit this by crashing a vulnerable application and possibly executing...
CVE-2006-0328
CVE-2006-0328 describes a format-string vulnerability in Tftpd32 2.81 where processing of a crafted filename in a GET or SEND request can cause a remote denial of service. Some sources also indicate a risk of remote code execution under the server’s privileges. The issue is documented across mult...