TFTP: FutureSoft TFTP Server 2000 Transfer-Mode Overflow
This signature detects attempts to exploit a known vulnerability against FutureSoft TFTP Server. Attackers can retrieve arbitrary files and execute remote code. The foundation for this signature is from the specifics of a Metasploit attack.
Extended Description
FutureSoft TFTP Server 2000 is affected by multiple remote vulnerabilities. Exploiting these issues can allow an attacker to retrieve arbitrary files and carry out buffer-overflow attacks. The following specific issues were identified: - Multiple buffer overflow vulnerabilities. A successful attack may allow the attacker to execute arbitrary code on a vulnerable computer and gain unauthorized access in the context of the server. A denial-of-service condition may arise as well. - A directory-traversal vulnerability. A successful attack may allow the attacker to access arbitrary files (if the server has permissions to access the file). These issues have been confirmed on TFTP Server 2000 Evaluation Version 1.0.0.1. Other versions may be affected as well.
Affected Products
Futuresoft tftp_server_2000
Short Name
TFTP:OPERATION:FS-TFTP-OF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
TFTP
Keywords
2000 CVE-2005-1812 FutureSoft Overflow Server TFTP Transfer-Mode bid:13821
Release Date
03/22/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Futuresoft
CVSS Score
10.0