Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
atftpd vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2003-0380
Buffer overflow in atftp daemon (atftpd) 0.6.1 and previous versions, and possibly later versions, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a long filename.
Atftpd Atftpd 0.6.0
Atftpd Atftpd 0.6.1.1
1 EDB exploit
445
VMScore
CVE-2021-46671
options.c in atftp prior to 0.7.5 reads past the end of an array, and consequently discloses server-side /etc/group data to a remote client.
Atftp Project Atftp
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
447
VMScore
CVE-2021-41054
tftpd_file.c in atftp up to and including 0.7.4 has a buffer overflow because buffer-size handling does not properly consider the combination of data, OACK, and other options.
Atftp Project Atftp
Debian Debian Linux 9.0
445
VMScore
CVE-2020-6097
An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0.7.git20120829-3.1+b1. A specially crafted sequence of RRQ-Multicast requests trigger an assert() call resulting in denial-of-service. An attacker can send a sequence of malicious p...
Atftp Project Atftp 0.7.git20120829-3.1\\+b1
Debian Debian Linux 9.0
Opensuse Leap 15.2
668
VMScore
CVE-2019-11365
An issue exists in atftpd in atftp 0.7.1. A remote attacker may send a crafted packet triggering a stack-based buffer overflow due to an insecurely implemented strncpy call. The vulnerability is triggered by sending an error packet of 3 bytes or fewer. There are multiple instance...
Atftp Project Atftp 0.7.1
2 Github repositories
383
VMScore
CVE-2019-11366
An issue exists in atftpd in atftp 0.7.1. It does not lock the thread_list_mutex mutex before assigning the current thread data structure. As a result, the daemon is vulnerable to a denial of service attack due to a NULL pointer dereference. If thread_data is NULL when assigned t...
Atftp Project Atftp 0.7.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started