CVSS: 7.5EPSS: 7%CPEs: 5EXPL: 3CVE-2009-3115 – SolarWinds TFTP Server 9.2.0.111 - Remote Denial of Service
https://notcve.org/view.php?id=CVE-2009-3115
09 Sep 2009 — SolarWinds TFTP Server 9.2.0.111 and earlier allows remote attackers to cause a denial of service (service stop) via a crafted Option Acknowledgement (OACK) request. NOTE: some of these details are obtained from third party information. SolarWinds TFTP Server v9.2.0.111 y anteriores permite a atacantes remotos provocar una denegación de servicio (parada del servicio) a través de una petición Option Acknowledgement (OACK) manipulada. NOTA: algunos de estos detalles han sido obtenidos a partir de información ... • https://www.exploit-db.com/exploits/9547 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 2%CPEs: 3EXPL: 0CVE-2006-1951
https://notcve.org/view.php?id=CVE-2006-1951
24 Apr 2006 — Directory traversal vulnerability in SolarWinds TFTP Server 8.1 and earlier allows remote attackers to download arbitrary files via a crafted GET request including "....//" sequences, which are collapsed into "../" sequences by filtering. • http://archives.neohapsis.com/archives/vulnwatch/2006-q2/0009.html •