Vulnerability Description
NBase switches NH208 and NH215 run a TFTP server which allows remote attackers to send software updates to modify the switch or cause a denial of service (crash) by guessing the target filenames, which have default names.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| N-Base | Nh208 | All versions |
| N-Base | Nh215 | All versions |
References
- http://marc.info/?l=bugtraq&m=90221104526016&w=2
- http://marc.info/?l=bugtraq&m=90221104526065&w=2
- http://www.securityfocus.com/bid/212
- http://marc.info/?l=bugtraq&m=90221104526016&w=2
- http://marc.info/?l=bugtraq&m=90221104526065&w=2
- http://www.securityfocus.com/bid/212
FAQ
What is CVE-1999-1421?
CVE-1999-1421 is a vulnerability with a CVSS score of 6.4 (MEDIUM). NBase switches NH208 and NH215 run a TFTP server which allows remote attackers to send software updates to modify the switch or cause a denial of service (crash) by guessing the target filenames, whic...
How severe is CVE-1999-1421?
CVE-1999-1421 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-1999-1421?
Check the references section above for vendor advisories and patch information. Affected products include: N-Base Nh208, N-Base Nh215.