Intrusion Prevention

TFTP.Server.error.Buffer.Overflow

Description

This indicates an attack attempt against a buffer-overflow vulnerability in TFTP Server SP.
The vulnerability is caused by an error when the vulnerable software handles a malicious TFTP error packet. It allows a remote attacker to execute arbitrary code via sending a specially crafted TFTP error packet.

Affected Products

TFTP Server SP 1.4 and 1.5 for Windows.

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Restrict access to TFTP network services.

CVE References

CVE-2008-2161