Title: TFTP Server SP Filename Handling Remote Overflow
Mar 27, 2008
Mar 26, 2008
A remote overflow exists in TFTP Server SP. The service fails to properly check bounds on user input resulting in a stack-based buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.
Remote / Network Access
Loss of Integrity
Upgrade to version 1.5 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.