Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
atftp vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2019-11365
An issue exists in atftpd in atftp 0.7.1. A remote attacker may send a crafted packet triggering a stack-based buffer overflow due to an insecurely implemented strncpy call. The vulnerability is triggered by sending an error packet of 3 bytes or fewer. There are multiple instance...
Atftp Project Atftp 0.7.1
2 Github repositories
383
VMScore
CVE-2019-11366
An issue exists in atftpd in atftp 0.7.1. It does not lock the thread_list_mutex mutex before assigning the current thread data structure. As a result, the daemon is vulnerable to a denial of service attack due to a NULL pointer dereference. If thread_data is NULL when assigned t...
Atftp Project Atftp 0.7.1
447
VMScore
CVE-2021-41054
tftpd_file.c in atftp up to and including 0.7.4 has a buffer overflow because buffer-size handling does not properly consider the combination of data, OACK, and other options.
Atftp Project Atftp
Debian Debian Linux 9.0
445
VMScore
CVE-2020-6097
An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0.7.git20120829-3.1+b1. A specially crafted sequence of RRQ-Multicast requests trigger an assert() call resulting in denial-of-service. An attacker can send a sequence of malicious p...
Atftp Project Atftp 0.7.git20120829-3.1\\+b1
Debian Debian Linux 9.0
Opensuse Leap 15.2
445
VMScore
CVE-2021-46671
options.c in atftp prior to 0.7.5 reads past the end of an array, and consequently discloses server-side /etc/group data to a remote client.
Atftp Project Atftp
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
641
VMScore
CVE-2002-2396
Buffer overflow in Advanced TFTP (atftp) 0.5 and 0.6, if installed setuid or setgid, may allow local users to execute arbitrary code via a long argument to the -g option.
Remi Lefebvre Advanced Tftp 0.5
Remi Lefebvre Advanced Tftp 0.6
755
VMScore
CVE-2003-0380
Buffer overflow in atftp daemon (atftpd) 0.6.1 and previous versions, and possibly later versions, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a long filename.
Atftpd Atftpd 0.6.0
Atftpd Atftpd 0.6.1.1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-24955
man-in-the-middle
dos
CVE-2024-2818
CVE-2024-30584
CVE-2024-31134
camera
CVE-2023-45866
CVE-2024-30585
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started