Vulnerability Details CVE-2005-4882
tftpd in Philippe Jounin Tftpd32 2.74 and earlier, as used in Wyse Simple Imager (WSI) and other products, allows remote attackers to cause a denial of service (daemon crash) via a long filename in a TFTP read (aka RRQ or get) request, a different vulnerability than CVE-2002-2226.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 78.1%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/fulldisclosure/2005-01/0386.html
- http://securitytracker.com/id?1012856
- http://secway.org/advisory/ad20050108.txt
- http://www.kb.cert.org/vuls/id/632633
- http://www.osvdb.org/12898
- http://archives.neohapsis.com/archives/fulldisclosure/2005-01/0386.html
- http://securitytracker.com/id?1012856
- http://secway.org/advisory/ad20050108.txt
- http://www.kb.cert.org/vuls/id/632633
- http://www.osvdb.org/12898
Products affected by CVE-2005-4882
-
cpe:2.3:a:philippe_jounin:tftpd32:1.0
-
cpe:2.3:a:philippe_jounin:tftpd32:1.1
-
cpe:2.3:a:philippe_jounin:tftpd32:2.0
-
cpe:2.3:a:philippe_jounin:tftpd32:2.1
-
cpe:2.3:a:philippe_jounin:tftpd32:2.11
-
cpe:2.3:a:philippe_jounin:tftpd32:2.2
-
cpe:2.3:a:philippe_jounin:tftpd32:2.21
-
cpe:2.3:a:philippe_jounin:tftpd32:2.5
-
cpe:2.3:a:philippe_jounin:tftpd32:2.51
-
cpe:2.3:a:philippe_jounin:tftpd32:2.52
-
cpe:2.3:a:philippe_jounin:tftpd32:2.53
-
cpe:2.3:a:philippe_jounin:tftpd32:2.54
-
cpe:2.3:a:philippe_jounin:tftpd32:2.60
-
cpe:2.3:a:philippe_jounin:tftpd32:2.62
-
cpe:2.3:a:philippe_jounin:tftpd32:2.70
-
cpe:2.3:a:philippe_jounin:tftpd32:2.71
-
cpe:2.3:a:philippe_jounin:tftpd32:2.72
-
cpe:2.3:a:philippe_jounin:tftpd32:2.73
-
cpe:2.3:a:philippe_jounin:tftpd32:2.74