PT-2009-2955 · K23Productions · Tftputil Gui
Published
2009-01-27
·
Updated
2024-02-14
·
CVE-2009-0289
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
k23productions TFTPUtil GUI versions 1.2.0 through 1.3.0
Description
The issue allows remote attackers to cause a denial of service, resulting in a service crash. This can be achieved by sending a crafted request with a long filename.
Recommendations
For versions 1.2.0 through 1.3.0, as a temporary workaround, consider restricting the length of filenames in requests to prevent the service from crashing.
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Tftputil Gui