Denial of Service Vulnerability in SolarWinds TFTP Server
CVE-2009-3115

Currently unrated

Key Information:

Vendor: Solarwinds
Status: Tftp Server
Vendor: CVE Published:; 9 September 2009

Summary

The SolarWinds TFTP Server version 9.2.0.111 and earlier is susceptible to a denial of service issue where attackers can exploit crafted Option Acknowledgement (OACK) requests. This vulnerability enables remote users to disrupt the service, potentially causing it to stop functioning entirely. Users and administrators are advised to upgrade to the latest version to mitigate this risk.

References

http://www.securityfocus.com/bid/36182

vdb-entryx_refsource_BID

http://secunia.com/advisories/36505

third-party-advisoryx_refsource_SECUNIA

http://www.exploit-db.com/exploits/9547

exploitx_refsource_EXPLOIT-DB

EPSS Score

7% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Sep 9, 2009
Vulnerability Reserved
Sep 9, 2009