PT-2009-2868 · None · Free Download Manager

Published

2009-02-03

Updated

2018-10-11

CVE-2009-0184

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Free Download Manager versions 2.5 Build 758 through 3.0 Build 844

Description The issue is related to multiple buffer overflows in the torrent parsing implementation. Remote attackers can execute arbitrary code via a long file name within a torrent file, a long tracker URL in a torrent file, or a long comment in a torrent file.

Recommendations For versions 2.5 Build 758 through 3.0 Build 844, update to a version that contains a fix for this issue to prevent remote attackers from executing arbitrary code.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2009-0184

Affected Products

Free Download Manager

PT-2009-2868 · None · Free Download Manager

CVE-2009-0184

Weakness Enumeration

Related Identifiers

Affected Products

References · 9