Lucene search
GoogleOSV:DSA-1739-1HistoryMar 13, 2009 - 12:00 a.m.
mldonkey - information disclosure
2009-03-1300:00:00
Google
osv.dev
21
EPSS
0.044
Percentile
92.5%
It has been discovered that mldonkey, a client for several P2P
networks, allows attackers to download arbitrary files using crafted
requests to the HTTP console.
The old stable distribution (etch) is not affected by this problem.
For the stable distribution (lenny), this problem has been fixed in
version 2.9.5-2+lenny1.
For the unstable distribution (sid), this problem will be fixed soon.
We recommend that you upgrade your mldonkey packages.
References
Related
openvas
openvas
Fedora Core 10 FEDORA-2009-2758 (mldonkey)
2009-03-20 00:00:00
Debian Security Advisory DSA 1739-1 (mldonkey)
2009-03-20 00:00:00
MLdonkey HTTP Request Arbitrary File Download Vulnerability
2009-03-17 00:00:00
securityvulns
securityvulns
MLDonkey directory traversal
2009-03-15 00:00:00
[SECURITY] [DSA 1739-1] New mldonkey packages fix information disclosure
2009-03-15 00:00:00
prion
prion
Path traversal
2009-03-03 16:30:00
nvd
nvd
CVE-2009-0753
2009-03-03 16:30:05
nessus
nessus
GLSA-200903-36 : MLDonkey: Information disclosure
2009-03-24 00:00:00
Debian DSA-1739-1 : mldonkey - path traversal
2009-03-24 00:00:00
Fedora 9 : mldonkey-3.0.0-1.fc9 (2009-2703)
2009-03-17 00:00:00
gentoo
gentoo
MLDonkey: Information disclosure
2009-03-23 00:00:00
debian
debian
[SECURITY] [DSA 1739-1] New mldonkey packages fix information disclosure
2009-03-13 20:58:15
fedora
fedora
[SECURITY] Fedora 10 Update: mldonkey-3.0.0-1.fc10
2009-03-16 19:51:30
[SECURITY] Fedora 9 Update: mldonkey-3.0.0-1.fc9
2009-03-16 19:39:17
cvelist
cvelist
CVE-2009-0753
2009-03-03 16:00:00
cve
cve
CVE-2009-0753
2009-03-03 16:30:05
ubuntucve
ubuntucve
CVE-2009-0753
2009-03-03 00:00:00
debiancve
debiancve
CVE-2009-0753
2009-03-03 16:30:05
exploitdb
exploitdb
MLdonkey 2.9.7 - Arbitrary File Disclosure
2009-02-23 00:00:00