VULHUB ™

atftp is prone to a locally exploitable buffer overflow condition. This issue is due to insufficient bounds checking performed on input supplied to the command line parameter (-T) for "tftp-timeout". Local attackers may exploit this condition to execute arbitrary instructions. It should be noted that although this vulnerability has been reported to affect atftp version 0.7cvs, other versions might also be vulnerable. It should also be noted that atftp is not installed setuid/setgid by default.

atftp is prone to a locally exploitable buffer overflow condition. This issue is due to insufficient bounds checking performed on input supplied to the command line parameter (-T) for "tftp-timeout". Local attackers may exploit this condition to execute arbitrary instructions. It should be noted that although this vulnerability has been reported to affect atftp version 0.7cvs, other versions might also be vulnerable. It should also be noted that atftp is not installed setuid/setgid by default.