8 matches found
GLSA-201001-06 : aria2: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201001-06 aria2: Multiple vulnerabilities Tatsuhiro Tsujikawa reported a buffer overflow in DHTRoutingTableDeserializer.cc CVE-2009-3575 and a format string vulnerability in the AbstractCommand::onAbort function in...
Gentoo Security Advisory GLSA 201001-06 (aria2)
The remote host is missing updates announced in advisory GLSA 201001-06. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 201001-06 (aria2)
The remote host is missing updates announced in advisory GLSA 201001-06. SPDX-FileCopyrightText: 2010 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
aria2 AbstractCommand::onAbort()函数格式串漏洞
CVE ID: CVE-2009-3617 aria2是Linux下的高速下载工具。 aria2的src/AbstractCommand.cc文件中的AbstractCommand::onAbort函数存在格式串漏洞。如果启用了日志功能,远程攻击者就可以在下载URI中包含printf格式串标识符触发分段错误,导致拒绝服务的情况。 aria2 1.6.2 厂商补丁: aria2 ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
CVE-2009-3617
Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in aria2 before 1.6.2, when logging is enabled, allows remote attackers to execute arbitrary code or cause a denial of service application crash via format string specifiers in a download URI. NOTE: som...
CVE-2009-3617
CVE-2009-3617 is a format-string vulnerability in aria2’s AbstractCommand::onAbort (src/AbstractCommand.cc) present in aria2 before 1.6.2. When logging is enabled, an attacker could supply a download URI containing printf-style format specifiers to cause arbitrary code execution or a denial of se...
CVE-2009-3617
Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in aria2 before 1.6.2, when logging is enabled, allows remote attackers to execute arbitrary code or cause a denial of service application crash via format string specifiers in a download URI. NOTE: som...
CVE-2009-3617
Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in aria2 before 1.6.2, when logging is enabled, allows remote attackers to execute arbitrary code or cause a denial of service application crash via format string specifiers in a download URI. NOTE: som...