50 matches found
Debian Security Advisory DSA 314-1 (atftp)
The remote host is missing an update to atftp announced via advisory DSA 314-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Atftpd 0.6 Remote Root Exploit (atftpdx.c)
No description provided by source. / PoC linux/86 remote exploit against atftpd c gunzip FIXED / include stdio.h include stdlib.h include unistd.h include string.h include netdb.h include sys/types.h include sys/socket.h include netinet/in.h include arpa/inet.h include signal.h define HEAPSTART...
Debian DSA-314-1 : atftp - buffer overflow
Rick Patel discovered that atftpd is vulnerable to a buffer overflow when a long filename is sent to the server. An attacker could exploit this bug remotely to execute arbitrary code on the server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in thi...
DEBIAN-CVE-2003-0380
Buffer overflow in atftp daemon atftpd 0.6.1 and earlier, and possibly later versions, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long filename...
DSA-314 atftp - buffer overflow
Bulletin has no description...
Atftpd 0.6 - 'atftpdx.c' Remote Command Execution
/ PoC linux/86 remote exploit against atftpd c gunzip FIXED / include include include include include include include include include include define HEAPSTART 0x080514b4 define HEAPEND 0x080594b4 define BACKDOOR "rfe" / port MUST be 1024 / define NOPNUM 128 / number of nops / define PORT 69 / tft...
Atftpd 0.6 - atftpdx.c Remote Command Execution
Atftpd 0.6 - atftpdx.c Remote Command Execution / PoC linux/86 remote exploit against atftpd c gunzip FIXED / include include include include include include include include include include define HEAPSTART 0x080514b4 define HEAPEND 0x080594b4 define BACKDOOR "rfe" / port MUST be 1024 / define...
Atftpd 0.6 Remote Root Exploit (atftpdx.c)
Exploit for linux platform in category remote exploits ========================================== Atftpd 0.6 Remote Root Exploit atftpdx.c ========================================== / PoC linux/86 remote exploit against atftpd c gunzip FIXED / include include include include include include inclu...
atftpd buffer overflow
Buffer overflow on uploadnign file with oversized name...
possible remote buffer overflow in atftpd
Hello, There is possible remote buffer overflow in atftpd. It has to do with length of filename which client sends to atftpd server. If you send filename over 253 bytes, it crashes with segfault. When I attach to process with gdb I can see it trying to run instruction from EIP 0x41414141. That ca...