Vulnerabilities > CVE-2006-4781 - Unspecified vulnerability in Futuresoft Tftp Server Multithreaded 1.1
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN futuresoft
exploit available
Summary
Heap-based buffer overflow in FutureSoft TFTP Server Multithreaded (MT) 1.1 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code by sending a crafted packet to port 69/UDP, which triggers the overflow when constructing an absolute path name. NOTE: Some details are obtained from third party information.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Multithreaded TFTP. CVE-2006-4781. Dos exploit for windows platform |
| file | exploits/windows/dos/2334.py |
| id | EDB-ID:2334 |
| last seen | 2016-01-31 |
| modified | 2006-09-08 |
| platform | windows |
| port | |
| published | 2006-09-08 |
| reporter | n00b |
| source | https://www.exploit-db.com/download/2334/ |
| title | Multithreaded TFTP <= 1.1 - Long Get Request Denial of Service Exploit |
| type | dos |
References
- http://secunia.com/advisories/21844
- http://secunia.com/advisories/21844
- http://www.securityfocus.com/bid/19925
- http://www.securityfocus.com/bid/19925
- http://www.vupen.com/english/advisories/2006/3559
- http://www.vupen.com/english/advisories/2006/3559
- https://www.exploit-db.com/exploits/2334
- https://www.exploit-db.com/exploits/2334