TFTPD small overflow

high Nessus Plugin ID 18493

Synopsis

The remote TFTP server has a denial of service vulnerability.

Description

It is possible to crash the remote TFTP server by sending a small UDP packet. A remote attacker could exploit this to crash the service.

Solution

Upgrade to the latest version of this software.

Plugin Details

Severity: High

ID: 18493

File Name: tftpd_small_overflow.nasl

Version: 1.15

Type: remote

Published: 6/15/2005

Updated: 8/15/2022

Configuration: Enable paranoid mode

Supported Sensors: Nessus

Vulnerability Information

Required KB Items: Settings/ParanoidReport, Services/udp/tftp

Exploit Available: true

Exploit Ease: No exploit is required

Exploited by Nessus: true

Reference Information

BID: 13908