2 matches found
CVE-2009-2958
The tftprequest function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a TFTP read aka RRQ request with a malformed blksize option...
CVE-2009-2957
Heap-based buffer overflow in the tftprequest function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, might allow remote attackers to execute arbitrary code via a long filename in a TFTP packet, as demonstrated by a read aka RRQ request...