Exploit for #VU41100 Command Injection in macOS and NetBSD

Published: 2020-08-09

Vulnerability identifier: #VU41100

Vulnerability risk: Medium

CVSSv4.0: 6.9 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:A/U:Green]

CVE-ID: CVE-2014-8517

CWE-ID: CWE-77

Exploitation vector: Network

Exploits in database: 3

August 9, 2020
- tnftp - clientside BSD Exploit [Exploit-DB]
- tnftp - 'savefile' Arbitrary Command Execution (Metasploit) [Exploit-DB]
- tnftp "savefile" Arbitrary Command Execution [Metasploit]

Vulnerable software:
macOS
Operating systems & Components / Operating system
NetBSD
Operating systems & Components / Operating system

Vendor: Apple Inc.
NetBSD Foundation, Inc