CyberSec.Space Logo
Back to CVE Browser

CVE-2008-2161

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1860%
EPSS Percentile29.48th
PublishedMay 12, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

Buffer overflow in TFTP Server SP 1.4 and 1.5 on Windows, and possibly other versions, allows remote attackers to execute arbitrary code via a long TFTP error packet. NOTE: some of these details are obtained from third party information.

Affected Platforms (CPE)

πŸ“¦
Tftp

Tftp Server Sp

= 1.4
πŸ“¦
Tftp

Tftp Server Sp

= 1.5

References & Advisories

πŸ”— http://secunia.com/advisories/30147
πŸ”— http://www.securityfocus.com/bid/29111
πŸ”— http://www.vupen.com/english/advisories/2008/1468/references
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/42298
πŸ”— https://www.exploit-db.com/exploits/5563
πŸ”— http://secunia.com/advisories/30147
πŸ”— http://www.securityfocus.com/bid/29111
πŸ”— http://www.vupen.com/english/advisories/2008/1468/references

Related Vulnerabilities

CVE-2005-181210.0

Multiple stack-based buffer overflows in FutureSoft TFTP Server Evaluation Version 1.0.0.1 allow remote attackers to execute arbit...

CVE-2006-618410.0

Multiple stack-based buffer overflows in Allied Telesyn TFTP Server (AT-TFTP) 1.9, and possibly earlier, allow remote attackers to...

CVE-2002-039510.0

The TFTP server for Red-M 1050 (Bluetooth Access Point) can not be disabled and makes it easier for remote attackers to crack the ...

CVE-2007-088810.0

Directory traversal vulnerability in the TFTP server in Kiwi CatTools before 3.2.0 beta allows remote attackers to read arbitrary ...