VYPR
Vendor

Philippe Jounin

Products
2
CVEs
7
Across products
7
Status
Private

Products

2

Recent CVEs

7
  • CVE-2025-1207LowFeb 12, 2025
    risk 0.20cvss 3.1epss 0.00

    A vulnerability was found in phjounin TFTPD64 4.64. It has been declared as problematic. This vulnerability affects unknown code of the component DNS Handler. The manipulation leads to denial of service. The attack needs to be done within the local network. The complexity of an…

  • CVE-2006-0328Jan 21, 2006
    risk 0.04cvss epss 0.07

    Format string vulnerability in Tftpd32 2.81 allows remote attackers to cause a denial of service via format string specifiers in a filename in a (1) GET or (2) SEND request.

  • CVE-2023-0887Feb 17, 2023
    risk 0.00cvss epss 0.00

    A vulnerability was found in phjounin TFTPD64-SE 4.64 and classified as critical. This issue affects some unknown processing of the file tftpd64_svc.exe. The manipulation leads to unquoted search path. An attack has to be approached locally. The complexity of an attack is rather…

  • CVE-2013-6809Dec 13, 2013
    risk 0.00cvss epss 0.03

    Format string vulnerability in the client in Tftpd32 before 4.50 allows remote servers to cause a denial of service (crash) or possibly execute arbitrary code via format string specifiers in the Remote File field.

  • CVE-2005-4883Nov 20, 2009
    risk 0.00cvss epss 0.01

    Race condition in Philippe Jounin Tftpd32 before 2.80 allows remote attackers to cause a denial of service (daemon crash) via invalid "connect frames."

  • CVE-2005-4882Nov 20, 2009
    risk 0.00cvss epss 0.02

    tftpd in Philippe Jounin Tftpd32 2.74 and earlier, as used in Wyse Simple Imager (WSI) and other products, allows remote attackers to cause a denial of service (daemon crash) via a long filename in a TFTP read (aka RRQ or get) request, a different vulnerability than…

  • CVE-2006-6141Nov 28, 2006
    risk 0.00cvss epss 0.04

    Buffer overflow in Tftpd32 3.01 allows remote attackers to cause a denial of service via a long GET or PUT request, which is not properly handled when the request is displayed in the title of the gauge window.