[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

TFTPD32 v3.01 TFTP Server Long File Name Buffer Overflow Vulnerability

A vulnerability has been identified in TFTP Server TFTPD32 v3.01, which could be exploited by attackers to cause a denial of service. It was due to the title of the gauge window which was limited to 256 char --> not enough to store the file name and the client address. 
The user can download newly version of the tftp server(http://philippe.jounin.net/tftpd32_download.html)