CVE-2008-1403

Description

Stack-based buffer overflow in the TFTP server in BootManage TFTPD 1.99 and earlier in BootManage Administrator 7.1 and earlier allows remote attackers to execute arbitrary code via a request with a long filename.

Affected products

• bootmanage / administratorwindows
• bootmanage / tftpdwindows

References

• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/41226
• VENDOR_ADVISORYhttp://secunia.com/advisories/29404
• MISChttp://www.securityfocus.com/archive/1/489705/100/0/threaded
• MISChttp://www.securityfocus.com/bid/28270
• MISChttp://aluigi.altervista.org/adv/bootixtftpd-adv.txt