Vulnerability Details : CVE-2009-2958
The tftp_request function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a TFTP read (aka RRQ) request with a malformed blksize option.
Vulnerability category: Memory CorruptionDenial of service
Products affected by CVE-2009-2958
- cpe:2.3:a:thekelleys:dnsmasq:*:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.25:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.48:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.47:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.35:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.22:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.34:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.33:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.31:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.23:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.21:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.14:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.13:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.5:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.4:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:1.16:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:1.15:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:1.8:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:1.7:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:0.992:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:0.98:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.44:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.43:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.39:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.38:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.28:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.27:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.18:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.17:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.10:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.9:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:1.12:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:1.11:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:1.4:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:1.3:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:1.2:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:0.7:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:0.6:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.46:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.45:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.40:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.30:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.29:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.20:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.19:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.12:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.11:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.3:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:1.14:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:1.13:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:1.6:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:1.5:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:0.96:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:0.95:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.42:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.41:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.37:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.36:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.26:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.24:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.16:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.15:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.8:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.7:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:2.6:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:1.18:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:1.17:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:1.10:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:1.9:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:0.996:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:0.5:*:*:*:*:*:*:*
- cpe:2.3:a:thekelleys:dnsmasq:0.4:*:*:*:*:*:*:*
Threat overview for CVE-2009-2958
Top countries where our scanners detected CVE-2009-2958
Top open port discovered on systems with this issue
53
IPs affected by CVE-2009-2958 326,275
Threat actors abusing to this issue?
Yes
Find out if you* are
affected by CVE-2009-2958!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2009-2958
3.56%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 90 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2009-2958
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:N/I:N/A:P |
8.6
|
2.9
|
NIST |
CWE ids for CVE-2009-2958
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2009-2958
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9816
404 Not Found
-
https://bugzilla.redhat.com/show_bug.cgi?id=519020
519020 – (CVE-2009-2957, CVE-2009-2958) CVE-2009-2957, CVE-2009-2958 dnsmasq: multiple vulnerabilities in TFTP server
-
http://www.coresecurity.com/content/dnsmasq-vulnerabilities
Dnsmasq Heap Overflow and NULL-pointer derreference on TFTP Server | CoreLabs Advisories
-
http://www.thekelleys.org.uk/dnsmasq/CHANGELOG
-
http://www.redhat.com/support/errata/RHSA-2009-1238.html
Support
-
http://www.ubuntu.com/usn/USN-827-1
USN-827-1: Dnsmasq vulnerabilities | Ubuntu security notices | Ubuntu
-
https://rhn.redhat.com/errata/RHSA-2010-0095.html
RHSA-2010:0095 - Security Advisory - Red Hat Customer Portal
-
http://www.securityfocus.com/bid/36120
Jump to