icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Cisco TFTP Server Long Filename DoS (Bug ID CSCdy03429)

High

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

Trivial File Transfer Protocol (TFTP) is a protocol that allows for easy transfer of files between network connected devices. A vulnerability has been discovered in the processing of filenames within a TFTP read request when Cisco IOS is configured to act as a TFTP server. This vulnerability is documented as Cisco Bug ID CSCdy03429.

Solution

http://www.cisco.com/warp/public/707/ios-tftp-long-filename-pub.shtml