Computer Security
[EN] securityvulns.ru no-pyccku


Free Download Manager buffer overflow
Published:05.05.2014
Source:
SecurityVulns ID:13740
Type:client
Threat Level:
5/10
Description:Buffer overflow via filename.
Affected:FREEDOWNLOADMANA : Free Download Manager 3.9
CVE:CVE-2014-2087 (Stack-based buffer overflow in the CDownloads_Deleted::UpdateDownload function in Downloads_Deleted.cpp in Free Download Manager 3.9.3 build 1360, 3.8 build 1173, 3.0 build 852, and earlier allows user-assisted remote attackers to execute arbitrary code via a long file name, which is then deleted from the download queue by the user.)
Original documentdocumentJulien Ahrens, [CVE-2014-2087] Free Download Manager CDownloads_Deleted::UpdateDownload() Buffer Overflow Remote Code Execution (05.05.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod