1 results (0.007 seconds)

CVSS: 10.0EPSS: 83%CPEs: 1EXPL: 7

Multiple stack-based buffer overflows in 3Com 3CTftpSvc 2.0.1, and possibly earlier, allow remote attackers to cause a denial of service (crash) or execute arbitrary code via a long mode field (aka transporting mode) in a (1) GET or (2) PUT command. Vulnerabilidades múltiples de desbordamiento de búfer basado en pila en 3Com 3CTftpSvc 2.0.1, y posiblemente versiones anteriores, permite a atacantes remotos provocar una denegación de servicio (caída) o ejecutar código de su elección mediante un campo mode largo (también conocido como transporting mode) en un comando (1) GET ó (2) PUT. • https://www.exploit-db.com/exploits/2855 https://www.exploit-db.com/exploits/2865 https://www.exploit-db.com/exploits/3388 https://www.exploit-db.com/exploits/3170 https://www.exploit-db.com/exploits/16347 http://secunia.com/advisories/23113 http://securityreason.com/securityalert/1930 http://www.securityfocus.com/archive/1/452754/100/0/threaded http://www.securityfocus.com/bid/21301 http://www.securityfocus.com/bid/21322 http://www.vupen.com/english/advisories/2006& • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •