Computer Security
[EN] securityvulns.ru no-pyccku


Rasterbar / libtorrent / firetorrent / qBittorrent / deluge Torrent directory traversal
Published:09.06.2009
Source:
SecurityVulns ID:9973
Type:library
Threat Level:
6/10
Description:Directory traversal on .torrent files processing.
Affected:LIBTORRENT : libtorrent 0.14
CVE:CVE-2009-1760 (Directory traversal vulnerability in src/torrent_info.cpp in Rasterbar libtorrent before 0.14.4, as used in firetorrent, qBittorrent, deluge Torrent, and other applications, allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) and partial relative pathname in a Multiple File Mode list element in a .torrent file.)
Original documentdocumentDimitris Glynos, Rasterbar libtorrent arbitrary file overwrite vulnerability (09.06.2009)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod