Lucene search

[email protected]CVE-2006-0328

HistoryJan 21, 2006 - 12:03 a.m.

CVE-2006-0328

2006-01-2100:03:00

[email protected]

web.nvd.nist.gov

cve-2006-0328

tftpd32

vulnerability

denial of service

format string

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.5 Medium

AI Score

Confidence

High

0.895 High

EPSS

Percentile

98.8%

JSON

Format string vulnerability in Tftpd32 2.81 allows remote attackers to cause a denial of service via format string specifiers in a filename in a (1) GET or (2) SEND request.

Affected configurations

NVD

Node

philippe_jounintftpd32Match2.81

CPENameOperatorVersion
philippe_jounin:tftpd32philippe jounin tftpd32eq2.81

CPE	Name	Operator	Version
philippe_jounin:tftpd32	philippe jounin tftpd32	eq	2.81

References

secunia.com/advisories/18539

securityreason.com/securityalert/362

www.critical.lt/?vulnerabilities/200

www.critical.lt/research/tftpd32_281_dos.txt

www.kb.cert.org/vuls/id/632633

www.osvdb.org/22661

www.securityfocus.com/archive/1/422405/100/0/threaded

www.securityfocus.com/bid/16333

www.vupen.com/english/advisories/2006/0263

exchange.xforce.ibmcloud.com/vulnerabilities/24250

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.5 Medium

AI Score

Confidence

High

0.895 High

EPSS

Percentile

98.8%

JSON

Related for CVE-2006-0328

nessus1 nvd1 prion1 checkpoint_advisories2 cvelist1 openvas1 cert1