| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2019-11365 | 7.5 |
An issue was discovered in atftpd in atftp 0.7.1. A remote attacker may send a crafted packet triggering a stack-based buffer overflow due to an insecurely implemented strncpy call. The vulnerability is triggered by sending an error packet of 3 bytes
|
28-09-2020 - 18:15 | 20-04-2019 - 13:29 | |
| CVE-2019-11366 | 4.3 |
An issue was discovered in atftpd in atftp 0.7.1. It does not lock the thread_list_mutex mutex before assigning the current thread data structure. As a result, the daemon is vulnerable to a denial of service attack due to a NULL pointer dereference.
|
28-09-2020 - 18:15 | 20-04-2019 - 13:29 | |
| CVE-2019-11366 | 4.3 |
An issue was discovered in atftpd in atftp 0.7.1. It does not lock the thread_list_mutex mutex before assigning the current thread data structure. As a result, the daemon is vulnerable to a denial of service attack due to a NULL pointer dereference.
|
28-09-2020 - 18:15 | 20-04-2019 - 13:29 | |
| CVE-2019-11365 | 7.5 |
An issue was discovered in atftpd in atftp 0.7.1. A remote attacker may send a crafted packet triggering a stack-based buffer overflow due to an insecurely implemented strncpy call. The vulnerability is triggered by sending an error packet of 3 bytes
|
28-09-2020 - 18:15 | 20-04-2019 - 13:29 |