CVE-2010-1174

Published: Mar 29, 2010Modified: Apr 29, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Cisco TFTP Server 1.1 allows remote attackers to cause a denial of service (daemon crash) via a crafted (1) read (aka RRQ) or (2) write (aka WRQ) request, or other TFTP packet. NOTE: some of these details are obtained from third party information.

Affected (1)

Products: Cisco: Tftp Server

Cisco

1 product

Tftp Server

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Cisco Tftp Server	Version 1.1

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (8)

http://secunia.com/advisories/39116

Source: cve@mitre.org

Vendor Advisory

http://www.exploit-db.com/exploits/11878

Source: cve@mitre.org

Exploit

http://www.securityfocus.com/bid/38968

Source: cve@mitre.org

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/57165

Source: cve@mitre.org

http://secunia.com/advisories/39116

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.exploit-db.com/exploits/11878

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://www.securityfocus.com/bid/38968

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/57165

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.