[prev in list] [next in list] [prev in thread] [next in thread] 

List:       bugtraq
Subject:    DDIVRT-2008-09 PacketTrap PT360 Tool Suite TFTP Denial of Service
From:       vulnerabilityresearch () digitaldefense ! net
Date:       2008-03-03 14:22:27
Message-ID: 20080303142227.4573.qmail () securityfocus ! com
[Download RAW message or body]

Title
-----
DDIVRT-2008-09 PacketTrap PT360 Tool Suite TFTP Denial of Service

Severity
--------
Medium

Discovered By
-------------
Digital Defense, Inc. Vulnerability Research Team
Credit: princeofnigeria and r@b13$

Date Discovered
---------------
1/29/2008

Vulnerability Description
-------------------------
The default installation of the PacketTrap PT360 Tool Suite Version 1.1.33.1.0 TFTP \
server component is susceptible to denial of service condition. A remote or local \
attacker can exploit this flaw by sending a specially crafted packet to the TFTP \
server. Successful exploitation of this flaw will cause the TFTP server process to \
crash.  The TFTP server will need to be restarted to resume normal TFTP server \
operations.

Solution Description
--------------------
PacketTrap Networks, Inc. released a patch (#3302) for this flaw on February 29, \
2008.  

Tested Systems / Software (with versions)
------------------------------------------
Windows XP Professional Service Pack 2, PacketTrap PT360 Tool Suite Version \
1.1.33.1.0.  Other versions may be vulnerable.

Vendor Contact
--------------
Name: PacketTrap Networks, Inc.
Website: http://www.packettrap.com/


[prev in list] [next in list] [prev in thread] [next in thread] 

Configure | About | News | Add a list | Sponsored by KoreLogic