返回 CVE 浏览器

CVE-2005-1812

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0940%

EPSS Percentile17.47th

Published2005年6月1日

Last Modified2026年4月16日

Vulnerability Description

Multiple stack-based buffer overflows in FutureSoft TFTP Server Evaluation Version 1.0.0.1 allow remote attackers to execute arbitrary code via a long (1) filename or (2) transfer mode string in a Read Request (RRQ) or Write Request (WRQ) packet.

Affected Platforms (CPE)

📦

Futuresoft

Tftp Server 2000

= 1.0.0.1

References & Advisories

🔗 http://secunia.com/advisories/15539

🔗 http://securitytracker.com/id?1014079

🔗 http://www.security.org.sg/vuln/tftp2000-1001.html

🔗 http://www.securityfocus.com/bid/13821

🔗 http://secunia.com/advisories/15539

🔗 http://securitytracker.com/id?1014079

🔗 http://www.security.org.sg/vuln/tftp2000-1001.html

🔗 http://www.securityfocus.com/bid/13821

相关漏洞威胁

CVE-2007-164510.0

Buffer overflow in FutureSoft TFTP Server 2000 on Microsoft Windows 2000 SP4 allows remote attackers to execute arbitrary code via...

CVE-2006-55847.5

The Remote Installation Service (RIS) in Microsoft Windows 2000 SP4 uses a TFTP server that allows anonymous access, which allows ...

CVE-2000-00154.6

CascadeView TFTP server allows local users to gain privileges via a symlink attack.

CVE-2005-254110.0

Tar 1.15.1 does not properly warn the user when extracting setuid or setgid files, which may allow local users or remote attackers...