9 matches found
SUSE CVE-2007-1799
Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.3 only checks for the ".." string, which allows remote attackers to overwrite arbitrary files via modified ".." sequences in a torrent filename, as demonstrated by "../" sequences, due to an incomplete fix for CVE-2007-1384...
FreeBSD Ports: ktorrent
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
SuSE 10 Security Update : ktorrent (ZYPP Patch Number 3049)
Ktorrent insufficiently validated the target file name. A malicious Server could therefore overwrite arbitary files of the user CVE-2007-1384 / CVE-2007-1799. Another bug could be exploited to crash Ktorrent. CVE-2007-1385 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description ...
openSUSE 10 Security Update : ktorrent (ktorrent-3057)
Ktorrent insufficiently validated the target file name. A malicious Server could therefore overwrite arbitary files of the user CVE-2007-1384,CVE-2007-1799. Another bug could be exploited to crash Ktorrent CVE-2007-1385. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text an...
Directory traversal
Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.3 only checks for the ".." string, which allows remote attackers to overwrite arbitrary files via modified ".." sequences in a torrent filename, as demonstrated by "../" sequences, due to an incomplete fix for CVE-2007-1384...
CVE-2007-1384
Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.2 allows remote attackers to overwrite arbitrary files via ".." sequences in a torrent filename...
CVE-2007-1384
Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.2 allows remote attackers to overwrite arbitrary files via ".." sequences in a torrent filename...
CVE-2007-1384
CVE-2007-1384 affects KTorrent prior to 2.1.2, via a directory traversal flaw in torrent.cpp that lets remote attackers overwrite arbitrary files by supplying torrent filenames containing ".." sequences. The issue, described as a vulnerability in KTorrent, enables partial integrity impact and cou...
CVE-2007-1384
Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.2 allows remote attackers to overwrite arbitrary files via ".." sequences in a torrent filename...