This page lists publicly disclosed CVE vulnerabilities affecting prosysinfo tftp_server_tftpdwin (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2007-2639 | Directory traversal vulnerability in TFTPdWin 0.4.2 allows remote attackers to read or modify arbitrary files outside the TFTP root via unspecified vectors. | [email protected] | 10.0 | 3.65% | 2007-05-13 | 2026-04-23 |
| CVE-2007-1404 | tftpd.exe in ProSysInfo TFTP Server TFTPDWIN 0.4.2 allows remote attackers to cause a denial of service via a long UDP packet that is not properly handled in a recv_from call. NOTE: this issue might be related to CVE-2006-4948. | [email protected] | 7.3 | 18.23% | 2007-03-10 | 2026-04-23 |
| CVE-2006-4948 | Stack-based buffer overflow in tftpd.exe in ProSysInfo TFTP Server TFTPDWIN 0.4.2 and earlier allows remote attackers to execute arbitrary code or cause a denial of service via a long file name. NOTE: the provenance of this information is unknown; the details are obtained from third party information. | [email protected] | 7.5 | 78.63% | 2006-09-23 | 2026-04-16 |