Free Download Manager torrent file parsing buffer overflow

2009-02-17T00:00:00
ID SAINT:85A55B04DD88E3A2579FA985AC9A9A2D
Type saint
Reporter SAINT Corporation
Modified 2009-02-17T00:00:00

Description

Added: 02/17/2009
CVE: CVE-2009-0184
BID: 33555

Background

Free Download Manager is a download accelerator and manager for Windows systems.

Problem

A buffer overflow vulnerability allows command execution when a user opens a torrent file containing a long file name.

Resolution

Upgrade to version 3.0 build 848 or higher.

References

<http://secunia.com/secunia_research/2009-5/>

Limitations

Exploit works on Free Download Manager 3.0 Build 843.

Platforms

Windows