Vulnerabilities (CVE)

Filtered by vendor Tftp Subscribe
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-2161 2 Microsoft, Tftp 2 All Windows, Tftp Server Sp 2023-12-10 10.0 HIGH N/A
Buffer overflow in TFTP Server SP 1.4 and 1.5 on Windows, and possibly other versions, allows remote attackers to execute arbitrary code via a long TFTP error packet. NOTE: some of these details are obtained from third party information.
CVE-2002-2237 1 Tftp 1 Tftp Server 2023-12-10 5.0 MEDIUM N/A
tftp32 TFTP server 2.21 and earlier allows remote attackers to cause a denial of service via a GET request with a DOS device name such as com1 or aux.
CVE-2004-1485 2 Gnu, Tftp 2 Inetutils, Tftp 2023-12-10 7.5 HIGH N/A
Buffer overflow in the TFTP client in InetUtils 1.4.2 allows remote malicious DNS servers to execute arbitrary code via a large DNS response that is handled by the gethostbyname function.
CVE-1999-0183 2 Linux, Tftp 2 Linux Kernel, Tftp 2023-12-10 6.4 MEDIUM N/A
Linux implementations of TFTP would allow access to files outside the restricted directory.