92 matches found
CVE-2018-25304
Free Download Manager 2.0 Build 417 contains a local buffer overflow vulnerability in the URL import functionality that allows attackers to trigger a structured exception handler SEH chain exploitation. Attackers can craft a malicious URL file that, when imported through the File Import Import...
EUVD-2018-21825
Free Download Manager 2.0 Built 417 contains a local buffer overflow vulnerability in the URL import functionality that allows attackers to trigger a structured exception handler SEH chain exploitation. Attackers can craft a malicious URL file that, when imported through the File Import Import...
CVE-2018-25304
Free Download Manager 2.0 Build 417 contains a local buffer overflow vulnerability in the URL import functionality that allows attackers to trigger a structured exception handler SEH chain exploitation. Attackers can craft a malicious URL file that, when imported through the File Import Import...
CVE-2018-25304 Free Download Manager 2.0 Build 417 Local Buffer Overflow SEH
Free Download Manager 2.0 Build 417 contains a local buffer overflow vulnerability in the URL import functionality that allows attackers to trigger a structured exception handler SEH chain exploitation. Attackers can craft a malicious URL file that, when imported through the File Import Import...
CVE-2018-25304
Free Download Manager 2.0 Built 417 contains a local buffer overflow in the URL import functionality (File > Import > Import lists of downloads) that allows an attacker to craft a malicious URL file causing a buffer overflow in the Location header response. This overflow overwrites the Stru...
EUVD-2010-1024
Malware in sbrugna...
EUVD-2024-43378
Malicious code in bioql PyPI...
CVE-2024-49315
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in CodeFlock FREE DOWNLOAD MANAGER free-download-manager allows Path Traversal.This issue affects FREE DOWNLOAD MANAGER: from n/a through = 1.0.0...
CVE-2024-49315 WordPress FREE DOWNLOAD MANAGER plugin <= 1.0.0 - Arbitrary File Deletion vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in CodeFlock FREE DOWNLOAD MANAGER free-download-manager allows Path Traversal.This issue affects FREE DOWNLOAD MANAGER: from n/a through = 1.0.0...
CVE-2024-49315 WordPress FREE DOWNLOAD MANAGER plugin <= 1.0.0 - Arbitrary File Deletion vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in CodeFlock FREE DOWNLOAD MANAGER free-download-manager allows Path Traversal.This issue affects FREE DOWNLOAD MANAGER: from n/a through = 1.0.0...
WordPress FREE DOWNLOAD MANAGER plugin <= 1.0.0 - Arbitrary File Deletion vulnerability
Arbitrary File Deletion vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin FREE DOWNLOAD MANAGER versions = 1.0.0...
WordPress FREE DOWNLOAD MANAGER Plugin <= 1.0.0 is vulnerable to Arbitrary File Deletion
Software FREE DOWNLOAD MANAGER Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Arbitrary File Deletion CVE CVE-2024-49315 Patch priority High CVSS severity High 8.6 Developer Claim ownership PSID 8f4f5a37b4b7 Credits stealthcopter Required privilege...
A week in security (September 18 - September 24)
Last week on Malwarebytes Labs: Emergency update! Apple patches three zero-days T-Mobile spills billing information to other customers Involved in a data breach? Heres what you need to know Steer clear of cryptocurrency recovery phrase scams DoppelPaymer ransomware group suspects identified The...
Ukrainian Hacker Suspected to be Behind "Free Download Manager" Malware Attack
The maintainers of Free Download Manager FDM have acknowledged a security incident dating back to 2020 that led to its website being used to distribute malicious Linux software. "It appears that a specific web page on our site was compromised by a Ukrainian hacker group, exploiting it to distribu...
Compromised Free Download Manager website was delivering malware for years
In a public announcement, Free Download Manager has acknowledged that a specific web page on its site was compromised by a Ukrainian cybercrime group, exploiting it to distribute malware. Free Download Manager is--unsurprisingly--a download manager for Windows, macOS, Android, and Linux that allo...
Free Download Manager Site Pushed Linux Password Stealer
By Deeba Ahmed A free download manager site redirected some of its visitors to a malicious Debian package repository that installed a Linux Password Stealer malware as part of an extensive, longstanding supply chain attack. This is a post from HackRead.com Read the original post: Free Download...
Free Download Manager backdoored – a possible supply chain attack on Linux machines
UPDATE 13.09.2023. Free Download Manager team issued an official statement regarding this incident. Over the last few years, Linux machines have become a more and more prominent target for all sorts of threat actors. According to our telemetry, 260,000 unique Linux samples appeared in the first...
Free Download Manager 2.0 Built 417 - Local Buffer Overflow (SEH)
Free Download Manager 2.0 Built 417 - Local Buffer Overflow SEH Exploit Title: Free Download Manager 2.0 Built 417 - Local Buffer Overflow SEH Date: 2018-04-23 Exploit Author: Marwan Shamel Software Link: https://filehippo.com/downloadfreedownloadmanager/925/ Version: v2.0 Built 417 Tested on:...
Free Download Manager Torrent File Parsing - Multiple Remote Buffer Overflow Vulnerabilities
No description provided by source. $Id: fdmtorrent.rb 7455 2009-11-10 21:52:17Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Free Download Manager <= 3.0 Build 844 .torrent BOF Exploit
No description provided by source. !/usr/bin/perl Free Download Manager = 3.0 Build 844 .torrent BOF Exploit ----------------------------------------------------------- Exploit by SkD [email protected] Vendors URL = www.freedownloadmanager.org Download FDM 3.0 Build 844 =...