[3/5] TFTP Server SP Long Error Message Buffer Overflow

May 9th, 2008 by

[3/5] TFTP Server SP Long Error Message Buffer Overflow

:tixxDZ has discovered a vulnerability in TFTP Server SP, which can be exploited by malicious people to cause a DoS or compromise a vulnerable system.The vulnerability is caused due to a boundary error in the handling of error messages and can be exploited to cause a BSS-based or stack-based buffer overflow via an error packet with an overly long error message.Successful exploitation allows execution of arbitrary code.The vulnerability is confirmed in the Windows version of TFTP Server SP version 1.4 and 1.5. Other versions may also be affected.Solution:Restrict network access to the TFTP service.Provided and/or discovered by:tixxDZOriginal Advisory:http://milw0rm.com/exploits/5563

Original post by pooja

[3/5] TFTP Server SP Long Error Message Buffer Overflow

Related Articles:

[3/5] TFTP Server SP Long Filename Buffer Overflow Vulnerability

[3/5] Quick Tftp Server Pro Long Mode Buffer Overflow Vulnerability

[3/5] BootManage TFTP Server Buffer Overflow Vulnerability

[3/5] SAP Message Server “group” Buffer Overflow Vulnerability

[4/5] Trillian Information Leakage and Buffer Overflow Vulnerabilities

Posted in Advisories - Exploits | | [3/5] TFTP Server SP Long Error Message Buffer Overflow

<< [3/5] Maian Music Cross-Site Scripting and SQL Injection | [2/5] OpenKM Document Export Security Issue >>

Cybertrion Systems

[3/5] TFTP Server SP Long Error Message Buffer Overflow

Categories

Archives:

Search:

Meta: