[2/5] Acronis Snap Deploy PXE Server TFTP Vulnerabilities

March 10th, 2008 by

[2/5] Acronis Snap Deploy PXE Server TFTP Vulnerabilities

:Luigi Auriemma has reported some vulnerabilities in Acronis Snap Deploy, which can be exploited by malicious people to disclose sensitive information or cause a DoS (Denial of Service).1) A NULL-pointer dereference error within the PXE Server (pxesrv.exe) can be exploited to crash the service via a specially crafted TFTP request.2) An input validation error within the PXE Server can be exploited to download arbitrary files outside the TFTP root via directory traversal attacks.The vulnerabilities are reported in version 2.0.0.1076. Other versions may also be affected.Solution:Restrict network access to the service.Provided and/or discovered by:Luigi AuriemmaOriginal Advisory:http://aluigi.altervista.org/adv/acropxe-adv.txt

Original post by pooja

[2/5] Acronis Snap Deploy PXE Server TFTP Vulnerabilities

Related Articles:

[2/5] Acronis True Image Echo Group Server and Windows Agent Denial of Service

[3/5] TFTP Server SP Long Error Message Buffer Overflow

[3/5] TFTP Server SP Long Filename Buffer Overflow Vulnerability

[3/5] BootManage TFTP Server Buffer Overflow Vulnerability

[3/5] Quick Tftp Server Pro Long Mode Buffer Overflow Vulnerability

Posted in Advisories - Exploits | | [2/5] Acronis Snap Deploy PXE Server TFTP Vulnerabilities

<< [3/5] Horde “theme” Local File Inclusion Vulnerability | [2/5] PacketTrap pt360 TFTP Filename Handling Denial of Service >>

Cybertrion Systems

[2/5] Acronis Snap Deploy PXE Server TFTP Vulnerabilities

Categories

Archives:

Search:

Meta: