Lucene search

Tftp Server Security Vulnerabilities

cve

CVE-2002-1209

Directory traversal vulnerability in SolarWinds TFTP Server 5.0.55, and possibly earlier, allows remote attackers to read arbitrary files via ".." (dot-dot backslash) sequences in a GET request.

6.8AI Score

0.03EPSS

2002-11-04 05:00 AM

cve

CVE-2002-1542

SolarWinds TFTP server 5.0.55 and earlier allows remote attackers to cause a denial of service (crash) via a large UDP datagram, possibly triggering a buffer overflow.

6.9AI Score

0.032EPSS

2003-03-31 05:00 AM

cve

CVE-2006-1951

Directory traversal vulnerability in SolarWinds TFTP Server 8.1 and earlier allows remote attackers to download arbitrary files via a crafted GET request including "....//" sequences, which are collapsed into "../" sequences by filtering.

6.7AI Score

0.008EPSS

2006-04-24 11:02 PM

cve

CVE-2009-3115

SolarWinds TFTP Server 9.2.0.111 and earlier allows remote attackers to cause a denial of service (service stop) via a crafted Option Acknowledgement (OACK) request. NOTE: some of these details are obtained from third party information.

6.8AI Score

0.032EPSS

2009-09-09 10:30 PM

cve

CVE-2010-2115

SolarWinds TFTP Server 10.4.0.10 allows remote attackers to cause a denial of service (no new connections) via a crafted read request.

6.7AI Score

0.557EPSS

2010-05-28 08:30 PM

cve

CVE-2010-2310

SolarWinds TFTP Server 10.4.0.13 allows remote attackers to cause a denial of service (crash) via a long write request.

6.8AI Score

0.013EPSS

2010-06-16 08:30 PM