Computer Security

Rasterbar / libtorrent / firetorrent / qBittorrent / deluge Torrent directory traversal
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Rasterbar / libtorrent / firetorrent / qBittorrent / deluge Torrent directory traversal
Published:09.06.2009
Source:BUGTRAQ
SecurityVulns ID:9973
Type:library
Level:6/10
Description:Directory traversal on .torrent files processing.
Affected:LIBTORRENT : libtorrent 0.14
CVE:CVE-2009-1760 (Directory traversal vulnerability in src/torrent_info.cpp in Rasterbar libtorrent before 0.14.4, as used in firetorrent, qBittorrent, deluge Torrent, and other applications, allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) and partial relative pathname in a Multiple File Mode list element in a .torrent file.)
Original documentdocumentDimitris Glynos, Rasterbar libtorrent arbitrary file overwrite vulnerability (09.06.2009)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server