Lucene search
HistoryApr 27, 2009 - 6:00 p.m.
CVE-2009-1440
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.7
Confidence
Low
EPSS
0.015
Percentile
87.2%
Incomplete blacklist vulnerability in DownloadListCtrl.cpp in amule 2.2.4 allows remote attackers to conduct argument injection attacks into a command for mplayer via a crafted filename.
Affected configurations
Node
amuleamuleMatch2.2.4
Related
cvelist
cvelist
CVE-2009-1440
2009-04-27 17:43:00
openvas
openvas
Gentoo Security Advisory GLSA 200909-06 (amule)
2009-09-15 00:00:00
Debian Security Advisory DSA 1821-1 (amule)
2009-06-30 00:00:00
Gentoo Security Advisory GLSA 200909-06 (amule)
2009-09-15 00:00:00
gentoo
gentoo
aMule: Parameter injection
2009-09-09 00:00:00
prion
prion
Design/Logic Flaw
2009-04-27 18:00:00
debian
debian
[SECURITY] [DSA 1821-1] New amule packages fix insufficient input sanitising
2009-06-22 23:45:52
debiancve
debiancve
CVE-2009-1440
2009-04-27 18:00:00
securityvulns
securityvulns
amule shell characters vulnerability
2009-06-24 00:00:00
[SECURITY] [DSA 1821-1] New amule packages fix insufficient input sanitising
2009-06-24 00:00:00
nessus
nessus
GLSA-200909-06 : aMule: Parameter injection
2009-09-10 00:00:00
Debian DSA-1821-1 : amule - insufficient input sanitising
2009-06-23 00:00:00
ubuntucve
ubuntucve
CVE-2009-1440
2009-04-27 00:00:00
cve
cve
CVE-2009-1440
2009-04-27 18:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.7
Confidence
Low
EPSS
0.015
Percentile
87.2%
Related for NVD:CVE-2009-1440