Phase:NBase switches NH208 and NH215 run a TFTP server which allows remote attackers to send software updates to modify the switch or cause a denial of service (crash) by guessing the target filenames, which have default names.
ReferencesBUGTRAQ:Monday, July 20, 1998 N-Base Vulnerability Advisory | URL:http://marc.theaimsgroup.com/?l=bugtraq&m=Monday, November 04, 9022526016&w=2 | BUGTRAQ:Wednesday, July 22, 1998 N-Base Vulnerability Advisory Followup | URL:http://marc.theaimsgroup.com/?l=bugtraq&m=Monday, November 04, 9022526065&w=2 |
Votes:Proposed (Wednesday, September 12, 2001)
Comments: ACCEPT(2) Foat, Cole | NOOP(1) Wall
F7: