Exploitation Summary
EIP tracks 5 public exploits for CVE-2008-1611.
PoCs published by Metasploit, b33f, muts, including Metasploit module exploits/windows/tftp/tftpserver_wrq_bof.
AI-analyzed exploit summary This Metasploit module exploits a buffer overflow in TFTP Server for Windows 1.4 ST via a malformed WRQ request, leading to remote code execution. The exploit leverages a SEH overwrite and a jump back to a NOP sled to execute payloads.
Description
Stack-based buffer overflow in TFTP Server SP 1.4 for Windows allows remote attackers to cause a denial of service or execute arbitrary code via a long filename in a read or write request.
Exploits (5)
This Metasploit module exploits a buffer overflow in TFTP Server for Windows 1.4 ST via a malformed WRQ request, leading to remote code execution. The exploit leverages a SEH overwrite and a jump back to a NOP sled to execute payloads.
This exploit targets a buffer overflow vulnerability in TFTP Server v1.4 via a malformed Read Request (RRQ) packet. It leverages a reverse shell payload to achieve remote code execution on Windows XP SP3.
This exploit targets a buffer overflow vulnerability in TFTP Server for Windows V1.4 ST. It sends a maliciously crafted UDP packet to trigger a bind shell on port 4444, leveraging shellcode for remote code execution.
This is a functional exploit for CVE-2008-1611, targeting a buffer overflow vulnerability in TFTPServerSP.exe via a crafted UDP packet. The payload includes shellcode, SEH overwrite, and a structured buffer to achieve remote code execution.
This Metasploit module exploits a buffer overflow in TFTP Server for Windows 1.4 ST via a malformed WRQ request, leading to remote code execution. The exploit leverages a stack-based overflow by manipulating the filename parameter in the WRQ packet, with specific offsets for different Windows versions and service modes.