ID
VAR-201304-0544
TITLE
AT-TFTP Server Stack Buffer Overflow Vulnerability
Trust: 0.9
sources:
BID: 59051 //
CNNVD: CNNVD-201304-224
DESCRIPTION
AT-TFTP Server is a free Windows-based TFTP server used to transfer software releases, patches, scripts, etc. between a PC and an Allied Telesis router and some switches. A remote stack-based buffer overflow vulnerability exists in AT-TFTP. An attacker could use this vulnerability to execute arbitrary code in the context of a program or cause a denial of service. There are vulnerabilities in AT-TFTP 2.0, other versions may also be affected. Failed attacks will cause denial-of-service conditions
Trust: 0.81
sources:
CNNVD: CNNVD-201304-224 //
BID: 59051
AFFECTED PRODUCTS
| vendor: | allied | model: | telesis at-tftp server | scope: | eq | version: | 2.0 | Trust: 0.3 |
sources:
BID: 59051
THREAT TYPE
remote
Trust: 0.6
sources:
CNNVD: CNNVD-201304-224
TYPE
buffer overflow
Trust: 0.6
sources:
CNNVD: CNNVD-201304-224
EXTERNAL IDS
| db: | BID | id: | 59051 | Trust: 0.9 |
| db: | CNNVD | id: | CNNVD-201304-224 | Trust: 0.6 |
sources:
BID: 59051 //
CNNVD: CNNVD-201304-224
REFERENCES
| url: | http://www.securityfocus.com/bid/59051 | Trust: 0.6 |
| url: | http://www.alliedtelesyn.co.uk | Trust: 0.3 |
sources:
BID: 59051 //
CNNVD: CNNVD-201304-224
CREDITS
xis_one
Trust: 0.9
sources:
BID: 59051 //
CNNVD: CNNVD-201304-224
SOURCES
| db: | BID | id: | 59051 |
| db: | CNNVD | id: | CNNVD-201304-224 |
LAST UPDATE DATE
2022-05-17T01:53:13.968000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 59051 | date: | 2013-04-12T00:00:00 |
| db: | CNNVD | id: | CNNVD-201304-224 | date: | 2013-04-16T00:00:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 59051 | date: | 2013-04-12T00:00:00 |
| db: | CNNVD | id: | CNNVD-201304-224 | date: | 2013-04-16T00:00:00 |