CVE-2018-10388

Format string vulnerability in the logMess function in TFTP Server SP 1.66 and earlier allows remote attackers to perform a denial of service or execute arbitrary code via format string sequences in a TFTP error packet.
References
Configurations

Configuration 1

cpe:2.3:a:open_tftp_server_project:open_tftp_server:*:*:*:*:sp:*:*:*

Information

Published : 2019-12-23 11:15

Updated : 2020-01-03 04:46


NVD link : CVE-2018-10388

Mitre link : CVE-2018-10388

Products Affected
No products.
CWE
CWE-134

Use of Externally-Controlled Format String