Vulnerabilities > CVE-2007-1435 - Remote Buffer Overflow vulnerability in D-Link Tftp Server 1.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Buffer overflow in D-Link TFTP Server 1.0 allows remote attackers to cause a denial of service (crash) via a long (1) GET or (2) PUT request, which triggers memory corruption. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description D-Link TFTP 1.0 Transporting Mode Remote Buffer Overflow Vulnerability. CVE-2007-1435. Remote exploit for hardware platform id EDB-ID:29735 last seen 2016-02-03 modified 2007-03-12 published 2007-03-12 reporter LSO source https://www.exploit-db.com/download/29735/ title D-Link TFTP 1.0 - Transporting Mode Remote Buffer Overflow Vulnerability description D-Link TFTP 1.0 Long Filename Buffer Overflow. CVE-2007-1435. Remote exploit for windows platform id EDB-ID:16345 last seen 2016-02-01 modified 2010-05-09 published 2010-05-09 reporter metasploit source https://www.exploit-db.com/download/16345/ title D-Link TFTP 1.0 - Long Filename Buffer Overflow
Metasploit
description | This module exploits a stack buffer overflow in D-Link TFTP 1.0. By sending a request for an overly long file name, an attacker could overflow a buffer and execute arbitrary code. For best results, use bind payloads with nonx (No NX). |
id | MSF:EXPLOIT/WINDOWS/TFTP/DLINK_LONG_FILENAME |
last seen | 2020-03-10 |
modified | 2017-11-08 |
published | 2009-02-26 |
references | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1435 |
reporter | Rapid7 |
source | https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/tftp/dlink_long_filename.rb |
title | D-Link TFTP 1.0 Long Filename Buffer Overflow |
Packetstorm
data source | https://packetstormsecurity.com/files/download/83123/dlink_long_filename.rb.txt |
id | PACKETSTORM:83123 |
last seen | 2016-12-05 |
published | 2009-11-26 |
reporter | patrick |
source | https://packetstormsecurity.com/files/83123/D-Link-TFTP-1.0-Long-Filename-Buffer-Overflow.html |
title | D-Link TFTP 1.0 Long Filename Buffer Overflow |