AT-TFTP Server Filename Handling Remote Overflow
Critical Nessus Plugin ID 23736
SynopsisThe remote tftp server is affected by a buffer overflow vulnerability.
DescriptionThe remote host appears to be running AT-TFTP Server, a tftpd server for Windows.
The version of AT-TFTP Server installed on the remote host appears to be affected by a buffer overflow vulnerability involving a long filenames when getting or putting files. By leveraging this flaw, a remote attacker may be able to crash the remote service or to execute code on the affected host subject to the privileges under which the server operates.
SolutionUnknown at this time.