PT-2010-2721 · Free Download Manager Team · Free Download Manager
Published
2010-05-17
·
Updated
2018-10-10
·
CVE-2010-0998
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Free Download Manager versions prior to 3.0.852
Description
The issue involves multiple stack-based buffer overflows that allow remote attackers to execute arbitrary code. This can be achieved through various vectors, including the folders feature in Site Explorer, the websites feature in Site Explorer, an FTP URI, or a redirect.
Recommendations
For versions prior to 3.0.852, update to version 3.0.852 or later to resolve the issue. As a temporary workaround, consider restricting access to the Site Explorer features and avoiding the use of FTP URIs or redirects until the update is applied.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Free Download Manager