Computer Security
[EN] securityvulns.ru no-pyccku


amule shell characters vulnerability
Published:24.06.2009
Source:
SecurityVulns ID:10008
Type:client
Threat Level:
5/10
Description:Shell characters vulnerability on video file filename.
Affected:AMULE : amule 2.1
CVE:CVE-2009-1440 (Incomplete blacklist vulnerability in DownloadListCtrl.cpp in amule 2.2.4 allows remote attackers to conduct argument injection attacks into a command for mplayer via a crafted filename.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 1821-1] New amule packages fix insufficient input sanitising (24.06.2009)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod