Vulnerability in N/a
CVE-2006-0328
Format string vulnerability in Tftpd32 2.81 allows remote attackers to cause a denial of service via format string specifiers in a filename in a (1) GET or (2) SEND request.
EPSS: 0.589 (98.3th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 16333 (vdb-entry, x_refsource_BID)
- 362 (x_refsource_SREASON, third-party-advisory)
- 20060119 Critical security advisory #006 tftpd32 Format string (mailing-list, x_refsource_BUGTRAQ)
- 22661 (x_refsource_OSVDB, vdb-entry)
- tftpd32-request-format-string(24250) (vdb-entry, x_refsource_XF)
- www.critical.lt/ (x_refsource_MISC)
- VU#632633 (x_refsource_CERT-VN, third-party-advisory)
- ADV-2006-0263 (vdb-entry, x_refsource_VUPEN)
- www.critical.lt/research/tftpd32_281_dos.txt (x_refsource_MISC)
- 18539 (x_refsource_SECUNIA, third-party-advisory)