CyberSec.Space Logo
CVEブラウザに戻る

CVE-2008-2161

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1860%
EPSS Percentile29.48th
Published2008年5月12日
Last Modified2026年4月23日

Vulnerability Description

Buffer overflow in TFTP Server SP 1.4 and 1.5 on Windows, and possibly other versions, allows remote attackers to execute arbitrary code via a long TFTP error packet. NOTE: some of these details are obtained from third party information.

Affected Platforms (CPE)

📦
Tftp

Tftp Server Sp

= 1.4
📦
Tftp

Tftp Server Sp

= 1.5

References & Advisories

🔗 http://secunia.com/advisories/30147
🔗 http://www.securityfocus.com/bid/29111
🔗 http://www.vupen.com/english/advisories/2008/1468/references
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/42298
🔗 https://www.exploit-db.com/exploits/5563
🔗 http://secunia.com/advisories/30147
🔗 http://www.securityfocus.com/bid/29111
🔗 http://www.vupen.com/english/advisories/2008/1468/references

関連する脆弱性情報

CVE-2005-181210.0

Multiple stack-based buffer overflows in FutureSoft TFTP Server Evaluation Version 1.0.0.1 allow remote attackers to execute arbit...

CVE-2006-618410.0

Multiple stack-based buffer overflows in Allied Telesyn TFTP Server (AT-TFTP) 1.9, and possibly earlier, allow remote attackers to...

CVE-2002-039510.0

The TFTP server for Red-M 1050 (Bluetooth Access Point) can not be disabled and makes it easier for remote attackers to crack the ...

CVE-2007-088810.0

Directory traversal vulnerability in the TFTP server in Kiwi CatTools before 3.2.0 beta allows remote attackers to read arbitrary ...