[3/5] BootManage TFTP Server Buffer Overflow Vulnerability
March 17th, 2008 by 
[3/5] BootManage TFTP Server Buffer Overflow Vulnerability
:Luigi Auriemma has discovered a vulnerability in BootManage TFTP Server, which can be exploited by malicious people to compromise a vulnerable system.The vulnerability is caused due to a boundary error within the processing of download requests. This can be exploited to cause a stack-based buffer overflow by requesting a file with an overly long filename from the TFTP server.The vulnerability is confirmed in version 1.99. Other versions may also be affected.Solution:Restrict access to trusted users only.Provided and/or discovered by:Luigi AuriemmaOriginal Advisory:http://aluigi.altervista.org/adv/bootixtftpd-adv.txt
Original post by pooja
[3/5] BootManage TFTP Server Buffer Overflow Vulnerability
Related Articles:
[3/5] TFTP Server SP Long Error Message Buffer Overflow [3/5] TFTP Server SP Long Filename Buffer Overflow Vulnerability [3/5] Quick Tftp Server Pro Long Mode Buffer Overflow Vulnerability [2/5] Acronis Snap Deploy PXE Server TFTP Vulnerabilities [2/5] PacketTrap pt360 TFTP Filename Handling Denial of Service
Posted in Advisories - Exploits | 
| [3/5] BootManage TFTP Server Buffer Overflow Vulnerability