Liuqx

Name of the Vulnerable Software and Affected Versions: Allied Telesyn TFTP Server versions 1.9 and earlier Description: The issue is caused by multiple stack-based buffer overflows in the Allied Telesyn TFTP Server. This can be exploited by remote attackers via a long filename in a GET or PUT command, potentially leading to a denial of service (crash) or execution of arbitrary code. Recommendations: For Allied Telesyn TFTP Server versions 1.9 and earlier, consider restricting access to the TFTP server until a patch is available, and avoid using long filenames in GET or PUT commands to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.