Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.Install Now
Available for macOS, Windows, and Linux
Dnsmasq TFTP Service multiple vulnerabilities
13 years ago
4 years ago
Dnsmasq is prone to a remotely exploitable heap-overflow vulnerability because the software fails to properly bounds-check user-supplied input before copying it into an insufficiently sized memory buffer.
NOTE: The TFTP service must be enabled for this issue to be exploitable. This is not the default.
dnsmasq versions 2.40 up to 2.49. Older versions are probably affected too, but they were not checked.
Updates are available. Please see the references for more information.