Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0184

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2009-0184
Last Modified 07 Mar 2011 10:18:02
Published 03 Feb 2009 02:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-0184

Summary

Multiple buffer overflows in the torrent parsing implementation in Free Download Manager (FDM) 2.5 Build 758 and 3.0 Build 844 allow remote attackers to execute arbitrary code via (1) a long file name within a torrent file, (2) a long tracker URL in a torrent file, or (3) a long comment in a torrent file.

Vulnerable Systems

Application

  • Free Download Manager 2.5

  • Free Download Manager 3.0


References

VUPEN - ADV-2009-0302

BID - 33555

BUGTRAQ - 20090202 Secunia Research: Free Download Manager Torrent Parsing Buffer Overflows

MISC - http://secunia.com/secunia_research/2009-5/

SECUNIA - 33524


Last Updated: 27 May 2016 10:50:08