Lucene search

K
redhatcveRedhat.comRH:CVE-2008-5905
HistoryOct 04, 2019 - 8:57 p.m.

CVE-2008-5905

2019-10-0420:57:19
redhat.com
access.redhat.com
4

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

7

Confidence

Low

EPSS

0.003

Percentile

69.8%

The web interface plugin in KTorrent before 3.1.4 allows remote attackers to bypass intended access restrictions and upload arbitrary torrent files, and trigger the start of downloads and seeding, via a crafted HTTP POST request.

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

7

Confidence

Low

EPSS

0.003

Percentile

69.8%