CVE-2007-1404
CVE-2007-1404
Vexday Risk Score
35Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Proof of concept
Public proof of concept exists, but not yet automated.
CVSS —EPSS 66.7%KEV nãoPoC públicaNuclei —Metasploit —Patch —
Lifecycle
10 Mar 2007Published on NVD
18 Aug 2009Public PoC
Weaponization speed
891 daysto first PoC
Recommendation: Plan a near-term fix — a public PoC already exists.
tftpd.exe in ProSysInfo TFTP Server TFTPDWIN 0.4.2 allows remote attackers to cause a denial of service via a long UDP packet that is not properly handled in a recv_from call. NOTE: this issue might be related to CVE-2006-4948.
Affected products
n/a · n/apublic PoCs found — 2
cve_referencewww.exploit-db.com/exploits/3432unverifiedexploitdbwww.exploit-db.com/exploits/9468unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.