CVE-2013-6809

2013-12-1317:00:00

mitre

www.cve.org

8 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.5%

JSON

Format string vulnerability in the client in Tftpd32 before 4.50 allows remote servers to cause a denial of service (crash) or possibly execute arbitrary code via format string specifiers in the Remote File field.

References

osvdb.org/100511

packetstormsecurity.com/files/124275/Tftpd32-Client-Side-Format-String.html

seclists.org/fulldisclosure/2013/Dec/15

exchange.xforce.ibmcloud.com/vulnerabilities/89455