← back
CVE-2007-1404

CVE-2007-1404

EPSS 66.7%
Vexday Risk Score
35Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Proof of concept
Public proof of concept exists, but not yet automated.
CVSS EPSS 66.7%KEV nãoPoC públicaNuclei Metasploit Patch
Lifecycle
10 Mar 2007Published on NVD
18 Aug 2009Public PoC
Weaponization speed
891 daysto first PoC
Recommendation: Plan a near-term fix — a public PoC already exists.
tftpd.exe in ProSysInfo TFTP Server TFTPDWIN 0.4.2 allows remote attackers to cause a denial of service via a long UDP packet that is not properly handled in a recv_from call. NOTE: this issue might be related to CVE-2006-4948.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.