CVE-2020-6097

An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0.7.git20120829-3.1+b1. A specially crafted sequence of RRQ-Multicast requests trigger an assert() call resulting in denial-of-service. An attacker can send a sequence of malicious packets to trigger this vulnerability.
Configurations

Configuration 1

cpe:2.3:a:atftp_project:atftp:0.7.git20120829-3.1+b1:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*

Information

Published : 2020-09-10 03:15

Updated : 2022-05-12 05:23


NVD link : CVE-2020-6097

Mitre link : CVE-2020-6097

Products Affected
No products.
CWE