Lucene search
FreeBSD73F53712-D028-11DB-8C07-0211D85F11FBHistoryMar 09, 2007 - 12:00 a.m.
ktorrent -- multiple vulnerabilities
2007-03-0900:00:00
vuxml.freebsd.org
13
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.059 Low
EPSS
Percentile
93.5%
Two problems have been found in KTorrent:
KTorrent does not properly sanitize file names to filter
out “…” components, so it’s possible for an attacker to create
a malicious torrent in order to overwrite arbitrary files within
the filesystem.
Messages with invalid chunk indexes aren’t rejected.
References
Related
nessus
nessus
Slackware 11.0 / current : ktorrent (SSA:2007-093-02)
2007-04-05 00:00:00
FreeBSD : ktorrent -- multiple vulnerabilities (73f53712-d028-11db-8c07-0211d85f11fb)
2007-03-12 00:00:00
openSUSE 10 Security Update : ktorrent (ktorrent-3057)
2007-10-17 00:00:00
openvas
openvas
Ubuntu Update for ktorrent vulnerabilities USN-436-1
2009-03-23 00:00:00
Ubuntu: Security Advisory (USN-436-1)
2009-03-23 00:00:00
FreeBSD Ports: ktorrent
2008-09-04 00:00:00
slackware
slackware
[slackware-security] ktorrent
2007-04-03 23:23:09
ubuntu
ubuntu
KTorrent vulnerabilities
2007-03-13 00:00:00
gentoo
gentoo
Ktorrent: Multiple vulnerabilities
2007-05-01 00:00:00
securityvulns
securityvulns
Ktorrent multiple security vulnerabilities
2007-03-12 00:00:00
ubuntucve
ubuntucve
prion
prion
Design/Logic Flaw
2007-03-10 18:19:00
Directory traversal
2007-03-10 18:19:00
Directory traversal
2007-04-02 22:19:00
cvelist
cvelist
nvd
nvd
cve
cve
debiancve
debiancve
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.059 Low
EPSS
Percentile
93.5%
Related for 73F53712-D028-11DB-8C07-0211D85F11FB