Remote Denial of Service in Cisco TFTP Server
CVE-2010-1174

Currently unrated

Key Information:

Vendor: Cisco
Status: Tftp Server
Vendor: CVE Published:; 29 March 2010

Summary

Cisco TFTP Server version 1.1 is susceptible to a denial of service attack caused by malformed read or write requests. Remote attackers can exploit this vulnerability by sending crafted TFTP packets, leading to the server's daemon crash. This can disrupt the service for legitimate users and potentially expose networks to further attacks.

References

http://secunia.com/advisories/39116

third-party-advisoryx_refsource_SECUNIA

http://www.exploit-db.com/exploits/11878

exploitx_refsource_EXPLOIT-DB

http://www.securityfocus.com/bid/38968

vdb-entryx_refsource_BID

EPSS Score

8% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 29, 2010
Vulnerability Reserved
Mar 29, 2010