Searching tftp software vulnerabilities

TFTP is not running in a restricted directory,

information | restricted | directory | sensitive | attacker | allowing | password | running | access | remote | files | TFTP | such | not |

TFTP is not running in a restricted directory, allowing a remote attacker to access sensitive information such as password files.


NBase switches NH208 and NH215 run a TFTP serve

attackers | switches | software | service | updates | remote | denial | switch | modify | server | allows | cause | NH215 | NH208 | NBase | which | send | TFTP | run |

NBase switches NH208 and NH215 run a TFTP server which allows remote attackers to send software updates to modify the switch or cause a denial of service (crash) by guessing the target filenames, which have default names.


Cisco TFTP server 1.1 allows remote attackers t

attackers | arbitrary | remote | allows | server | Cisco | files | TFTP | read | via |

Cisco TFTP server 1.1 allows remote attackers to read arbitrary files via a ..(dot dot) attack in the GET command.


Avaya Argent Office 2.1 may allow remote attack

legitimate | providing | attackers | broadcast | HoldMusic | alternate | response | spoofing | server's | Office | remote | Argent | change | allow | Avaya | music | file | hold | TFTP | may |

Avaya Argent Office 2.1 may allow remote attackers to change hold music by spoofing a legitimate server's response to a TFTP broadcast and providing an alternate HoldMusic file.


Directory traversal vulnerability in IBM alphaW

vulnerability | alphaWorks | Directory | traversal | server | TFTP | Java | IBM |

Directory traversal vulnerability in IBM alphaWorks Java TFTP server 1.21 allows remote attackers to conduct unauthorized operations on arbitrary files via a .. (dot dot) attack.


Alcatel Speed Touch running firmware KHDSAA.108

configurations | KHDSAA132 | KHDSAA108 | KHDSAA134 | attackers | versions | password | device's | firmware | without | running | through | Alcatel | remote | change | allows | server | Speed | which | Touch | TFTP | has |

Alcatel Speed Touch running firmware KHDSAA.108 and KHDSAA.132 through KHDSAA.134 has a TFTP server running without a password, which allows remote attackers to change firmware versions or the device's configurations.


Alcatel ADSL modems allow remote attackers to a

attackers | Transfer | Protocol | Alcatel | Trivial | modems | access | remote | allow | ADSL | File |

Alcatel ADSL modems allow remote attackers to access the Trivial File Transfer Protocol (TFTP) to modify firmware and configuration via a bounce attack from a system on the local area network (LAN) side, which is allowed to access TFTP without authentication.


Directory traversal vulnerability in SolarWinds

vulnerability | SolarWinds | traversal | Directory | Server | TFTP |

Directory traversal vulnerability in SolarWinds TFTP Server 5.0.55, and possibly earlier, allows remote attackers to read arbitrary files via "..\" (dot-dot backslash) sequences in a GET request.


SolarWinds TFTP server 5.0.55 and earlier allow

SolarWinds | server | TFTP |

SolarWinds TFTP server 5.0.55 and earlier allows remote attackers to cause a denial of service (crash) via a large UDP datagram, possibly triggering a buffer overflow.


Com21 DOXport 1100 series cable modem running f

DOXport | Com21 |

Com21 DOXport 1100 series cable modem running firmware 2.1.1.106, and possibly other versions before 2.1.1.108.003, downloads a DOCSIS configuration file from a TFTP server running on the internal network, which allows local users to modify configuration of the modem via a malicious TFTP server.


Buffer overflow in Tellurian TftpdNT 1.8 allows

attackers | arbitrary | Tellurian | filename | overflow | execute | request | TftpdNT | Buffer | remote | allows | long | code | TFTP | via |

Buffer overflow in Tellurian TftpdNT 1.8 allows remote attackers to execute arbitrary code via a TFTP request with a long filename.


The make_recovery command for the TFTP server i

make_recovery | information | Ignite-UX | directory | sensitive | attackers | password | command | before | remote | allows | obtain | C62241 | server | makes | which | TFTP | copy | tree | file |

The make_recovery command for the TFTP server in HP Ignite-UX before C.6.2.241 makes a copy of the password file in the TFTP directory tree, which allows remote attackers to obtain sensitive information.


Buffer overflow in the TFTP client in InetUtils

InetUtils | overflow | client | Buffer | TFTP |

Buffer overflow in the TFTP client in InetUtils 1.4.2 allows remote malicious DNS servers to execute arbitrary code via a large DNS response that is handled by the gethostbyname function.


Heap-based buffer overflow in the WvTFTPServer:

Heap-based | overflow | buffer |

Heap-based buffer overflow in the WvTFTPServer::new_connection function in wvtftpserver.cc for WvTftp 0.9 allows remote attackers to execute arbitrary code via a long option string in a TFTP packet.


WinAgents TFTP Server 3.0 allows remote attacke

attackers | WinAgents | service | denial | remote | Server | allows | cause | TFTP |

WinAgents TFTP Server 3.0 allows remote attackers to cause a denial of service (crash) via a request for a file with a long file name, possibly due to an off-by-one buffer overflow.


Sweex Wireless Broadband Router/Accesspoint 802

Router/Accesspoint | Broadband | Wireless | 80211g | Sweex |

Sweex Wireless Broadband Router/Accesspoint 802.11g (LC000060) allows remote attackers to obtain sensitive information and gain privileges by using TFTP to download the nvram file, then extracting the username, password, and other data from the file.


Directory traversal vulnerability in FutureSoft

vulnerability | FutureSoft | Evaluation | Directory | traversal | Version | Server | TFTP |

Directory traversal vulnerability in FutureSoft TFTP Server Evaluation Version 1.0.0.1 allows remote attackers to read arbitrary files via a TFTP GET request containing (1) "../" (dot dot slash) or (2) "..\" (dot dot backslash) sequences.


Heap-based buffer overflow in cURL and libcURL

Heap-based | overflow | libcURL | buffer | cURL |

Heap-based buffer overflow in cURL and libcURL 7.15.0 through 7.15.2 allows remote attackers to execute arbitrary commands via a TFTP URL (tftp://) with a valid hostname and a long path.


Multiple stack-based buffer overflows in Allied

stack-based | overflows | Multiple | Telesyn | Server | buffer | Allied | TFTP |

Multiple stack-based buffer overflows in Allied Telesyn TFTP Server (AT-TFTP) 1.9, and possibly earlier, allow remote attackers to cause a denial of service (crash) or execute arbitrary code via a long filename in a (1) GET or (2) PUT command.


Directory traversal vulnerability in TFTPdWin 0

vulnerability | traversal | Directory | TFTPdWin |

Directory traversal vulnerability in TFTPdWin 0.4.2 allows remote attackers to read or modify arbitrary files outside the TFTP root via unspecified vectors.


Software vulnerabilities results 1 to 20 of 41     
Page: 123