Computer Security
[EN] securityvulns.ru no-pyccku


Free Download Manager multiple security vulnerability
Published:02.02.2009
Source:
SecurityVulns ID:9642
Type:remote
Threat Level:
6/10
Description:Buffer overflow in remote control HTTP server, buffer overflow on torrent stream parsing.
Affected:FREEDOWNLOADMANA : Free Download Manager 2.5
 FREEDOWNLOADMANA : Free Download Manager 3.0
CVE:CVE-2009-0184 (Multiple buffer overflows in the torrent parsing implementation in Free Download Manager (FDM) 2.5 Build 758 and 3.0 Build 844 allow remote attackers to execute arbitrary code via (1) a long file name within a torrent file, (2) a long tracker URL in a torrent file, or (3) a long comment in a torrent file.)
 CVE-2009-0183 (Stack-based buffer overflow in Remote Control Server in Free Download Manager (FDM) 2.5 Build 758 and 3.0 Build 844 allows remote attackers to execute arbitrary code via a long Authorization header in an HTTP request.)
Original documentdocumentSECUNIA, Secunia Research: Free Download Manager Remote Control Server Buffer Overflow (02.02.2009)

Multiple Kaspersky Lab applications privilege escalation
Published:02.02.2009
Source:
SecurityVulns ID:9643
Type:local
Threat Level:
5/10
Description:Access to kernel memory regions from usermode on IOCTL processing.
Affected:KASPERSKY : Kaspersky Antivirus 2008
 KASPERSKY : Kaspersky Antivirus for Workstations 6.0
Original documentdocumentvulns_(at)_wintercore.com, [Wintercore Research WS02-0209] Kaspersky Products Klim5.sys local privilege escalation (02.02.2009)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod