CVE-2010-2115

Solarwinds Tftp Server - Improper Input Validation

Title source: rule

Description

SolarWinds TFTP Server 10.4.0.10 allows remote attackers to cause a denial of service (no new connections) via a crafted read request.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Nullthreat · perldoswindows
https://www.exploit-db.com/exploits/12683
metasploit WORKING POC
rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/windows/tftp/solarwinds.rb

References (4)

Scores

EPSS 0.8283
EPSS Percentile 99.3%

Details

CWE
CWE-20
Status published
Products (1)
solarwinds/tftp_server 10.4.0.10
Published May 28, 2010
Tracked Since Feb 18, 2026