Details of VAR-190001-0207

ID

VAR-190001-0207

TITLE

CiscoKits CCNA TFTP Write Command Remote Denial of Service Vulnerability

Trust: 1.5

sources: CNVD: CNVD-2011-3057 // BID: 49045 // CNNVD: CNNVD-201108-119

DESCRIPTION

CertificationKits CiscoKits CCNA TFTP Server is a TFTP server that can be used to help prepare for the Cisco Certificate Exam. CertificationKits CiscoKits CCNA TFTP Server incorrectly verifies WRITE requests containing very long filenames, allowing an attacker to crash the service. CiscoKits CCNA TFTP Server is prone to a remote denial-of-service vulnerability. Successfully exploiting this issue allows remote attackers to crash the affected application, denying service to legitimate users

Trust: 0.81

sources: CNVD: CNVD-2011-3057 // BID: 49045

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2011-3057

AFFECTED PRODUCTS

vendor:

certificationkits

model:

ciscokits ccna tftp server

scope:

version:

1.0

Trust: 0.9

sources: CNVD: CNVD-2011-3057 // BID: 49045

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201108-119

TYPE

resource management error

Trust: 0.6

sources: CNNVD: CNNVD-201108-119

EXTERNAL IDS

db:	BID	id:	49045	Trust: 1.5
db:	CNVD	id:	CNVD-2011-3057	Trust: 0.6
db:	CNNVD	id:	CNNVD-201108-119	Trust: 0.6
db:	EXPLOIT-DB	id:	17618	Trust: 0.3

sources: CNVD: CNVD-2011-3057 // BID: 49045 // CNNVD: CNNVD-201108-119

REFERENCES

url:	http://secpod.org/advisories/secpod_ciscokits_ccna_tftp_dos.txt	Trust: 0.6
url:	http://www.securityfocus.com/bid/49045	Trust: 0.6
url:	http://www.exploit-db.com/exploits/17618/	Trust: 0.3
url:	http://www.certificationkits.com/cisco-ccna-tftp-server/	Trust: 0.3

sources: CNVD: CNVD-2011-3057 // BID: 49045 // CNNVD: CNNVD-201108-119

CREDITS

SecPod Research

Trust: 0.9

sources: BID: 49045 // CNNVD: CNNVD-201108-119

SOURCES

db:	CNVD	id:	CNVD-2011-3057
db:	BID	id:	49045
db:	CNNVD	id:	CNNVD-201108-119

LAST UPDATE DATE

2022-05-17T01:59:17.102000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2011-3057	date:	2011-08-08T00:00:00
db:	BID	id:	49045	date:	2011-08-05T00:00:00
db:	CNNVD	id:	CNNVD-201108-119	date:	2011-08-09T00:00:00

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2011-3057	date:	2011-08-08T00:00:00
db:	BID	id:	49045	date:	2011-08-05T00:00:00
db:	CNNVD	id:	CNNVD-201108-119	date:	1900-01-01T00:00:00