CVE-2020-6097
published 2020-09-10CVE-2020-6097: An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0.7.git20120829-3.1+b1. A specially crafted sequence of…
PriorityP339high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
2.40%
81.9th percentile
An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0.7.git20120829-3.1+b1. A specially crafted sequence of RRQ-Multicast requests trigger an assert() call resulting in denial-of-service. An attacker can send a sequence of malicious packets to trigger this vulnerability.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| atftp_project | atftp | — | — |
| atftp_project | atftp | >= 0 < 0.7.git20120829-3.2 | 0.7.git20120829-3.2 |
| atftp_project | atftp | >= 0 < 0.7.git20120829-3.2 | 0.7.git20120829-3.2 |
| atftp_project | atftp | >= 0 < 0.7.git20120829-3.2 | 0.7.git20120829-3.2 |
| atftp_project | atftp | >= 0 < 0.7.git20120829-3.2 | 0.7.git20120829-3.2 |
| atftp_project | atftp | >= 0 < 0.7.git20120829-3.1ubuntu0.1 | 0.7.git20120829-3.1ubuntu0.1 |
| atftp_project | atftp | >= 0 < 0.7.git20120829-3.1~0.16.04.1+esm1 | 0.7.git20120829-3.1~0.16.04.1+esm1 |
| atftp_project | atftp | >= 0 < 0.7.git20120829-3.1~0.18.04.1+esm1 | 0.7.git20120829-3.1~0.18.04.1+esm1 |
| debian | atftp | < atftp 0.7.git20120829-3.2 (bookworm) | atftp 0.7.git20120829-3.2 (bookworm) |
| debian | debian_linux | — | — |
| opensuse | leap | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv7.5HIGH
vendor_debian7.5HIGH
vendor_ubuntu7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
atftp vulnerabilities
vendor_ubuntu·2023-09-04·CVSS 7.5
CVE-2020-6097 [HIGH] atftp vulnerabilities
Title: atftp vulnerabilities
Summary: Several security issues were fixed in atftp.
Peter Wang discovered that atftp did not properly manage certain inputs. A
remote attacker could send a specially crafted tftp request to the server
to cause a crash. (CVE-2020-6097)
Andreas B. Mundt discovered that atftp did not properly manage certain
inputs. A remote attacker could send a specially crafted tftp request to
the server to cause a crash. (CVE-2021-41054)
Johannes Krupp discovered that atftp did not properly manage certain
inputs. A remote attacker could send a specially crafted tftp request to
the server and make the server to disclose /etc/group data.
(CVE-2021-46671)
Instructions: In general, a standard system update will make all the necessary changes.
Debian
CVE-2020-6097: atftp - An exploitable denial of service vulnerability exists in the atftpd daemon funct...
vendor_debian·2020·CVSS 7.5
CVE-2020-6097 [HIGH] CVE-2020-6097: atftp - An exploitable denial of service vulnerability exists in the atftpd daemon funct...
An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0.7.git20120829-3.1+b1. A specially crafted sequence of RRQ-Multicast requests trigger an assert() call resulting in denial-of-service. An attacker can send a sequence of malicious packets to trigger this vulnerability.
Scope: local
bookworm: resolved (fixed in 0.7.git20120829-3.2)
bullseye: resolved (fixed in 0.7.git20120829-3.2)
forky: resolved (fixed in 0.7.git20120829-3.2)
sid: resolved (fixed in 0.7.git20120829-3.2)
trixie: resolved (fixed in 0.7.git20120829-3.2)
OSV
atftp vulnerabilities
osv·2023-09-04·CVSS 7.5
CVE-2020-6097 [HIGH] atftp vulnerabilities
atftp vulnerabilities
Peter Wang discovered that atftp did not properly manage certain inputs. A
remote attacker could send a specially crafted tftp request to the server
to cause a crash. (CVE-2020-6097)
Andreas B. Mundt discovered that atftp did not properly manage certain
inputs. A remote attacker could send a specially crafted tftp request to
the server to cause a crash. (CVE-2021-41054)
Johannes Krupp discovered that atftp did not properly manage certain
inputs. A remote attacker could send a specially crafted tftp request to
the server and make the server to disclose /etc/group data.
(CVE-2021-46671)
GHSA
GHSA-g854-fc3p-gq33: An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0
ghsa_unreviewed·2022-05-24
CVE-2020-6097 [MEDIUM] CWE-617 GHSA-g854-fc3p-gq33: An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0
An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0.7.git20120829-3.1+b1. A specially crafted sequence of RRQ-Multicast requests trigger an assert() call resulting in denial-of-service. An attacker can send a sequence of malicious packets to trigger this vulnerability.
OSV
CVE-2020-6097: An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0
osv·2020-09-10·CVSS 7.5
CVE-2020-6097 [HIGH] CVE-2020-6097: An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0
An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0.7.git20120829-3.1+b1. A specially crafted sequence of RRQ-Multicast requests trigger an assert() call resulting in denial-of-service. An attacker can send a sequence of malicious packets to trigger this vulnerability.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00058.htmlhttps://lists.debian.org/debian-lts-announce/2021/11/msg00014.htmlhttps://talosintelligence.com/vulnerability_reports/TALOS-2020-1029http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00058.htmlhttps://lists.debian.org/debian-lts-announce/2021/11/msg00014.htmlhttps://talosintelligence.com/vulnerability_reports/TALOS-2020-1029
2020-09-10
Published