Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-1759HistoryMay 22, 2009 - 11:52 a.m.
CVE-2009-1759
2009-05-2211:52:40
Debian Security Bug Tracker
security-tracker.debian.org
9
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.224
Percentile
96.5%
Stack-based buffer overflow in the btFiles::BuildFromMI function (trunk/btfiles.cpp) in Enhanced CTorrent (aka dTorrent) 3.3.2 and probably earlier, and CTorrent 1.3.4, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Torrent file containing a long path.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | ctorrent | < 1.3.4-dnh3.2-1.1 | ctorrent_1.3.4-dnh3.2-1.1_all.deb |
| Debian | 11 | all | ctorrent | < 1.3.4-dnh3.2-1.1 | ctorrent_1.3.4-dnh3.2-1.1_all.deb |
| Debian | 999 | all | ctorrent | < 1.3.4-dnh3.2-1.1 | ctorrent_1.3.4-dnh3.2-1.1_all.deb |
| Debian | 13 | all | ctorrent | < 1.3.4-dnh3.2-1.1 | ctorrent_1.3.4-dnh3.2-1.1_all.deb |
Related
nessus
nessus
Fedora 10 : ctorrent-1.3.4-7.dnh3.3.2.fc10 (2009-8969)
2009-08-25 00:00:00
Fedora 11 : ctorrent-1.3.4-10.dnh3.3.2.fc11 (2009-8897)
2009-08-25 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-1817-1)
2009-06-23 00:00:00
FreeBSD Ports: ctorrent
2009-11-11 00:00:00
Gentoo Security Advisory GLSA 201311-11
2015-09-29 00:00:00
debian
debian
[SECURITY] [DSA 1817-1] New ctorrent packages fix arbitrary code execution
2009-06-17 22:07:51
prion
prion
Stack overflow
2009-05-22 11:52:00
exploitdb
exploitdb
cTorrent/DTorrent - '.torrent' Local Buffer Overflow
2009-04-17 00:00:00
cvelist
cvelist
CVE-2009-1759
2009-05-22 01:00:00
freebsd
freebsd
Enhanced cTorrent -- stack-based overflow
2009-10-15 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: ctorrent-1.3.4-10.dnh3.3.2.fc11
2009-08-25 04:27:00
[SECURITY] Fedora 10 Update: ctorrent-1.3.4-7.dnh3.3.2.fc10
2009-08-25 04:42:00
cve
cve
CVE-2009-1759
2009-05-22 11:52:40
nvd
nvd
CVE-2009-1759
2009-05-22 11:52:40
ubuntucve
ubuntucve
CVE-2009-1759
2009-05-22 00:00:00
gentoo
gentoo
CTorrent: User-assisted arbitrary code execution
2013-11-20 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.224
Percentile
96.5%
Related for DEBIANCVE:CVE-2009-1759