cisco-sa-20020730-ioc-tftp-lfn · NA · Published · Updated
Trivial File Transfer Protocol (TFTP) is a protocol which allows for easy transfer of files between network connected devices. A vulnerability has been discovered in the processing of filenames within a TFTP read request on IOS devices and PXM-1 based MGX switches. The following products are identified as affected by this vulnerability: MGX 8230, 8250 and PXM-1 based MGX 8850 switches running versions 1.2.10 or below Cisco IOS devices running versions 11.1, 11.2, 11.3 Unless explicitly stated otherwise, all other Cisco products are not affected. There is no workaround on MGX switches. On IOS devices, a simple workaround exists,which is detailed in the Workarounds section below. This advisory is available at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20020730-ioc-tftp-lfn.