Futuresoft : Security Vulnerabilities, CVEs,
Buffer overflow in FutureSoft TFTP Server 2000 on Microsoft Windows 2000 SP4 allows remote attackers to execute arbitrary code via a long request on UDP port 69. NOTE: this issue might overlap CVE-2006-4781 or CVE-2005-1812.
Max CVSS
10.0
EPSS Score
4.07%
Published
2007-03-24
Updated
2017-10-11
Heap-based buffer overflow in FutureSoft TFTP Server Multithreaded (MT) 1.1 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code by sending a crafted packet to port 69/UDP, which triggers the overflow when constructing an absolute path name. NOTE: Some details are obtained from third party information.
Max CVSS
7.5
EPSS Score
3.24%
Published
2006-09-14
Updated
2017-10-19
Directory traversal vulnerability in FutureSoft TFTP Server Evaluation Version 1.0.0.1 allows remote attackers to read arbitrary files via a TFTP GET request containing (1) "../" (dot dot slash) or (2) "..\" (dot dot backslash) sequences.
Max CVSS
7.8
EPSS Score
0.99%
Published
2005-06-01
Updated
2008-09-05
CVE-2005-1812
Public exploit
Multiple stack-based buffer overflows in FutureSoft TFTP Server Evaluation Version 1.0.0.1 allow remote attackers to execute arbitrary code via a long (1) filename or (2) transfer mode string in a Read Request (RRQ) or Write Request (WRQ) packet.
Max CVSS
10.0
EPSS Score
58.49%
Published
2005-06-01
Updated
2008-09-05
4 vulnerabilities found