19 matches found
EUVD-2020-27251
Malware in sbrugna...
EUVD-2019-3044
Malware in sbrugna...
EUVD-2019-3043
Malware in sbrugna...
EUVD-2021-33347
Malicious code in bioql PyPI...
CVE-2021-46671
options.c in atftp before 0.7.5 reads past the end of an array, and consequently discloses server-side /etc/group data to a remote client...
CVE-2020-6097
An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0.7.git20120829-3.1+b1. A specially crafted sequence of RRQ-Multicast requests trigger an assert call resulting in denial-of-service. An attacker can send a sequence of malicious packets to trigger...
USN-6375-1 atftp vulnerability
Florian Fainelli discovered that atftp did not properly manage requests made to a non-existent file, which could lead to a crash. A remote attacker could possibly use this issue to cause a denial of service...
PT-2023-36319 · Atftp · Atftp
Name of the Vulnerable Software and Affected Versions: atftp affected versions not specified Description: The issue arises from atftp's improper management of requests made to non-existent files, potentially leading to a crash. A remote attacker could exploit this to cause a denial of service...
SUSE CVE-2020-6097
An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0.7.git20120829-3.1+b1. A specially crafted sequence of RRQ-Multicast requests trigger an assert call resulting in denial-of-service. An attacker can send a sequence of malicious packets to trigger...
CVE-2021-46671
options.c in atftp before 0.7.5 reads past the end of an array, and consequently discloses server-side /etc/group data to a remote client...
Design/Logic Flaw
options.c in atftp before 0.7.5 reads past the end of an array, and consequently discloses server-side /etc/group data to a remote client...
CVE-2021-46671
options.c in atftp before 0.7.5 reads past the end of an array, and consequently discloses server-side /etc/group data to a remote client...
PT-2022-4795 · Atftp +5 · Atftp +5
Name of the Vulnerable Software and Affected Versions: atftp versions prior to 0.7.5 Description: The issue is related to a buffer overflow in the options.c file of atftp, allowing a remote client to access sensitive server-side data, specifically /etc/group information. Recommendations: For...
atftp 安全漏洞
atftp is a client implementation of the TFTP protocol. A security vulnerability exists in tftpdfile.c in ATFTP 0.7.4 and earlier versions, which stems from buffer size handling that does not properly account for combinations of data, OACK, and other options...
UBUNTU-CVE-2020-6097
An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0.7.git20120829-3.1+b1. A specially crafted sequence of RRQ-Multicast requests trigger an assert call resulting in denial-of-service. An attacker can send a sequence of malicious packets to trigger...
CVE-2019-11366
An issue was discovered in atftpd in atftp 0.7.1. It does not lock the threadlistmutex mutex before assigning the current thread data structure. As a result, the daemon is vulnerable to a denial of service attack due to a NULL pointer dereference. If threaddata is NULL when assigned to current, a...
atftp code issue vulnerability
atftp is a client implementation of the TFTP protocol. A security vulnerability exists in atftp version 0.7.1. An attacker can exploit this vulnerability to cause a denial of service...
ATFTP 0.7 Timeout Command Line Argument Local Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7902/info atftp is prone to a locally exploitable buffer overflow condition. This issue is due to insufficient bounds checking performed on input supplied to the command line parameter -t for timeout. Local attackers may...
ATFTP 0.7 - Timeout Command Line Argument Local Buffer Overflow
ATFTP 0.7 - Timeout Command Line Argument Local Buffer Overflow source: https://www.securityfocus.com/bid/7902/info atftp is prone to a locally exploitable buffer overflow condition. This issue is due to insufficient bounds checking performed on input supplied to the command line parameter -t for...