Nullthreat

**Name of the Vulnerable Software and Affected Versions** Integard Pro versions prior to 2.0.0.9037 Integard Home versions prior to 2.0.0.9037 Integard Pro and Home versions 2.2.x prior to 2.2.0.9037 **Description** The web server has a buffer overflow via a long password in an administration login POST request, leading to arbitrary code execution. This issue can be exploited through an EIP-overwrite buffer overflow. **Recommendations** For Integard Pro and Home versions prior to 2.0.0.9037, update to version 2.0.0.9037 or later. For Integard Pro and Home versions 2.2.x prior to 2.2.0.9037, update to version 2.2.0.9037 or later. As a temporary workaround, consider restricting access to the administration login `POST` request until a patch is available. Avoid using long passwords in the administration login until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** SolarWinds TFTP Server version 10.4.0.13 **Description** The issue allows remote attackers to cause a denial of service, resulting in a crash, by sending a long write request. **Recommendations** For SolarWinds TFTP Server version 10.4.0.13, consider restricting access to the TFTP service until a patch is available to prevent potential denial of service attacks.

**Name of the Vulnerable Software and Affected Versions** SolarWinds TFTP Server version 10.4.0.10 **Description** The issue allows remote attackers to cause a denial of service, preventing new connections, via a crafted read request. **Recommendations** For SolarWinds TFTP Server version 10.4.0.10, at the moment, there is no information about a newer version that contains a fix for this issue.