Computer Security
[EN] securityvulns.ru no-pyccku


MLDonkey directory traversal
Published:15.03.2009
Source:
SecurityVulns ID:9745
Type:remote
Threat Level:
5/10
Description:It's possible to retrieve any file with HTTP console.
Affected:MLDONKEY : mldonkey 2.9
CVE:CVE-2009-0753 (Absolute path traversal vulnerability in MLDonkey 2.8.4 through 2.9.7 allows remote attackers to read arbitrary files via a leading "//" (double slash) in the filename.)
Original documentdocumentFlorian Weimer, [SECURITY] [DSA 1739-1] New mldonkey packages fix information disclosure (15.03.2009)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod