CVE-2013-6809
medium
CVSS v3
โ
CVSS v4 NEW
โ
VIR risk
5.0
Description
Format string vulnerability in the client in Tftpd32 before 4.50 allows remote servers to cause a denial of service (crash) or possibly execute arbitrary code via format string specifiers in the Remote File field.
Predictions
Exploit likelihood
20%
Patch ETA
โ
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No mitigations published for this CVE yet.
The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or โ if you've already worked around this in production โ publish your fix to the community-verified tier.
โ Propose a mitigation on Community โ Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here withsource_tier=community-verified.
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| philippe_jounin | tftpd32 | {"endIncluding":"4.00"} | |
| philippe_jounin | tftpd32 | 1.0 | |
| philippe_jounin | tftpd32 | 1.1 | |
| philippe_jounin | tftpd32 | 2.0 | |
| philippe_jounin | tftpd32 | 2.1 | |
| philippe_jounin | tftpd32 | 2.2 | |
| philippe_jounin | tftpd32 | 2.11 | |
| philippe_jounin | tftpd32 | 2.21 | |
| philippe_jounin | tftpd32 | 2.51 | |
| philippe_jounin | tftpd32 | 2.52 | |
| philippe_jounin | tftpd32 | 2.53 | |
| philippe_jounin | tftpd32 | 2.54 | |
| philippe_jounin | tftpd32 | 2.60 | |
| philippe_jounin | tftpd32 | 2.62 | |
| philippe_jounin | tftpd32 | 2.70 | |
| philippe_jounin | tftpd32 | 2.71 | |
| philippe_jounin | tftpd32 | 2.72 | |
| philippe_jounin | tftpd32 | 2.73 | |
| philippe_jounin | tftpd32 | 2.74 | |
| philippe_jounin | tftpd32 | 2.80 | |
| philippe_jounin | tftpd32 | 2.81 | |
| philippe_jounin | tftpd32 | 2.82 | |
| philippe_jounin | tftpd32 | 2.83 | |
| philippe_jounin | tftpd32 | 2.84 | |
| philippe_jounin | tftpd32 | 3.00 | |
| philippe_jounin | tftpd32 | 3.01 | |
| philippe_jounin | tftpd32 | 3.02 | |
| philippe_jounin | tftpd32 | 3.03 | |
| philippe_jounin | tftpd32 | 3.10 | |
| philippe_jounin | tftpd32 | 3.20 | |
| philippe_jounin | tftpd32 | 3.22 | |
| philippe_jounin | tftpd32 | 3.23 | |
| philippe_jounin | tftpd32 | 3.26 | |
| philippe_jounin | tftpd32 | 3.27 | |
| philippe_jounin | tftpd32 | 3.28 | |
| philippe_jounin | tftpd32 | 3.29 | |
| philippe_jounin | tftpd32 | 3.31 | |
| philippe_jounin | tftpd32 | 3.33 | |
| philippe_jounin | tftpd32 | 3.34 | |
| philippe_jounin | tftpd32 | 3.35 | |
| philippe_jounin | tftpd32 | 3.50 | |
| philippe_jounin | tftpd32 | 3.51 | |
References
- http://osvdb.org/100511
- http://packetstormsecurity.com/files/124275/Tftpd32-Client-Side-Format-String.html
- http://seclists.org/fulldisclosure/2013/Dec/15
- https://exchange.xforce.ibmcloud.com/vulnerabilities/89455
- http://osvdb.org/100511
- http://packetstormsecurity.com/files/124275/Tftpd32-Client-Side-Format-String.html
- http://seclists.org/fulldisclosure/2013/Dec/15
- https://exchange.xforce.ibmcloud.com/vulnerabilities/89455
CWEs
CWE-134
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.