CVE-2013-6809

{"id": "CVE-2013-6809", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-12-13T18:55:05.490", "references": [{"url": "http://osvdb.org/100511", "source": "cve@mitre.org"}, {"url": "http://packetstormsecurity.com/files/124275/Tftpd32-Client-Side-Format-String.html", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://seclists.org/fulldisclosure/2013/Dec/15", "tags": ["Exploit", "Patch"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/89455", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-134"}]}], "descriptions": [{"lang": "en", "value": "Format string vulnerability in the client in Tftpd32 before 4.50 allows remote servers to cause a denial of service (crash) or possibly execute arbitrary code via format string specifiers in the Remote File field."}, {"lang": "es", "value": "Vulnerabilidad de format string en el cliente de Tftpd32 anteriores a 4.50 permite a servidores remotos causar una denegaci\u00f3n de servicio (crash) o posiblemente ejecutar c\u00f3digo de forma arbitrria a trav\u00e9s especificadores de formato de cadena en el campo Remote File."}], "lastModified": "2017-08-29T01:34:01.467", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F66734BC-25CC-4ED7-AA29-4E44A577209C", "versionEndIncluding": "4.00"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3C558A7E-9627-4652-B9A0-449DBEC13759"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EEB055ED-1521-4ED0-9D2C-57055083B647"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4271F96E-D7F2-4A19-8F38-116F3BC4564A"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5CB878C3-11C3-44A9-AC8A-4A5552820409"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D57D87FF-5437-4027-BEE1-2E589BD82432"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B71CA63D-17FD-4684-B13F-AED4EF68BABD"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D3DBE3D5-9899-4DBF-B241-988E5BA0539E"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.51:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "01577E14-494A-41E7-AAE3-CE056D5D47A9"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.52:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E2643C36-668E-457F-BB34-154D39025BD4"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.53:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EA1FDE23-01D4-475D-AEB5-149C0C3E184B"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.54:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "037A8135-0860-4D78-9BD3-8159BF2A658E"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.60:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D31EFFDF-1234-4472-A869-5949B2006F66"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.62:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E048D128-8BCD-4E74-85CC-9ADA091C9C2E"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.70:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D59FAF65-D5D5-4A45-8A18-CA40C63807EB"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.71:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A8A20FA-E34A-4348-BEFD-0AF760429CDD"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.72:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E258100C-F46E-414C-8ACA-063C87823FF5"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.73:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "460C391A-E8FB-4921-ADFF-5E5F6C8C36D8"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.74:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "74E764CD-0312-4476-965B-24A15486E485"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.80:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B794E953-4B56-45A8-9245-38D3E7BDC529"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.81:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "58FAB6C7-C0F4-47F3-BD18-D1F1BF04AE51"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.82:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B6680458-1D5F-4D25-9BC2-20CC1FE5101B"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.83:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4AD50C40-964C-4ABD-B44D-49DAE6C60D57"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:2.84:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2AEB740D-2466-423C-B6CE-56269F82F099"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:3.00:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9764EE49-B3F1-4515-9B24-A8784C2D74BA"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:3.01:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2644ACEC-E21F-4192-8AF8-DDE548D57391"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:3.02:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "948234FA-3543-44DF-8B28-E6F721E7C9CB"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:3.03:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0FC92027-C6A5-4731-9E3D-4E496F990B1C"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:3.10:beta:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6A6D5407-B8D3-4121-860E-AB6B8C0A47BB"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:3.20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E1070A0C-7B23-4F94-9503-D9A420AC7BD5"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:3.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "91EDEA13-B9D2-4A13-AEA2-0BA8B3A43B51"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:3.23:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "545EC5A0-1DB9-4062-878F-FE10910A32B1"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:3.26:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3C8F8452-2471-40EE-9222-22049D46C451"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:3.27:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "30115C7C-22FD-40CB-AD02-C634CCAC22E6"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:3.28:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E12BEC3-C466-48EB-A945-41728D4CC32B"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:3.29:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2CBA5417-1C29-4793-9F23-301DC8DEFF8E"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:3.31:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ECED70EC-27C4-4061-9796-DED9A142BCE0"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:3.33:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "142EE8CE-08BA-4CC5-A146-3EFE135C6E68"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:3.34:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B189F0A3-823A-4622-8DFA-5C61F732C51A"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:3.35:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "440FB930-512F-4BC4-A6AE-3B93BF184A39"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:3.50:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2CC9E7E0-DBCD-4C3A-BBF2-F06C1814BE05"}, {"criteria": "cpe:2.3:a:philippe_jounin:tftpd32:3.51:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BFC8813F-30A5-409F-AB85-3801E4CCE36D"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}