CVE-2009-2958

NONECVSS 0.0

0.0

The tftp_request function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a TFTP read (aka RRQ) request with a malformed blksize option.

🔗 References (18)

cve@mitrehttp://secunia.com/advisories/36563
cve@mitrehttp://www.coresecurity.com/content/dnsmasq-vulnerabilities
cve@mitrehttp://www.redhat.com/support/errata/RHSA-2009-1238.html
cve@mitrehttp://www.securityfocus.com/bid/36120
cve@mitrehttp://www.thekelleys.org.uk/dnsmasq/CHANGELOG
cve@mitrehttp://www.ubuntu.com/usn/USN-827-1
cve@mitrehttps://bugzilla.redhat.com/show_bug.cgi?id=519020
cve@mitrehttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9816
cve@mitrehttps://rhn.redhat.com/errata/RHSA-2010-0095.html
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/36563
af854a3a-2127-422b-91ae-364da2661108http://www.coresecurity.com/content/dnsmasq-vulnerabilities
af854a3a-2127-422b-91ae-364da2661108http://www.redhat.com/support/errata/RHSA-2009-1238.html
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/36120
af854a3a-2127-422b-91ae-364da2661108http://www.thekelleys.org.uk/dnsmasq/CHANGELOG
af854a3a-2127-422b-91ae-364da2661108http://www.ubuntu.com/usn/USN-827-1

Is Your Infrastructure Affected by CVE-2009-2958?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-2958

📅 Published

🔄 Last Modified

🔗 References (18)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-2958?