DNS: Tftpd32 DNS Server Buffer Overflow

This signature detects attempts to exploit a known vulnerability in the Tftpd32. The vulnerability is due to an error in processing domain labels. A remote, unauthenticated attacker can exploit this vulnerability by sending a malicious DNS frame to an affected server. A successful exploitation attempt may result in the execution of arbitrary code in the security context of the Tftpd32 server. An unsuccessful attack attempt can result in a denial-of-service condition.

Short Name
DNS:OVERFLOW:TFTPD32
Severity
Major
Recommended
False
Recommended Action
Drop
Category
DNS
Keywords
Buffer DNS Overflow Server Tftpd32
Release Date
05/05/2014
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3324
False Positive
Unknown

Found a potential security threat?