[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

USN-711-1 -- ktorrent vulnerabilities

ID: oval:org.secpod.oval:def:700436Date: (C)2011-05-13   (M)2021-09-11
Class: PATCHFamily: unix




It was discovered that KTorrent did not properly restrict access when using the web interface plugin. A remote attacker could use a crafted http request and upload arbitrary torrent files to trigger the start of downloads and seeding. It was discovered that KTorrent did not properly handle certain parameters when using the web interface plugin. A remote attacker could use crafted http requests to execute arbitrary PHP code

Platform:
Ubuntu 7.10
Ubuntu 8.10
Ubuntu 8.04
Product:
ktorrent
Reference:
USN-711-1
CVE-2008-5905
CVE-2008-5906
CVE    2
CVE-2008-5905
CVE-2008-5906
CPE    3
cpe:/o:ubuntu:ubuntu_linux:8.04
cpe:/o:ubuntu:ubuntu_linux:7.10
cpe:/o:ubuntu:ubuntu_linux:8.10

© SecPod Technologies