7 matches found
EUVD-2007-1381
Malware in sbrugna...
EUVD-2007-1793
Malware in sbrugna...
DEBIAN-CVE-2008-5905
The web interface plugin in KTorrent before 3.1.4 allows remote attackers to bypass intended access restrictions and upload arbitrary torrent files, and trigger the start of downloads and seeding, via a crafted HTTP POST request...
CVE-2007-1799
Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.3 only checks for the ".." string, which allows remote attackers to overwrite arbitrary files via modified ".." sequences in a torrent filename, as demonstrated by "../" sequences, due to an incomplete fix for CVE-2007-1384...
CVE-2007-1799
CVE-2007-1799 affects KTorrent prior to 2.1.3. A directory traversal vulnerability exists in torrent.cpp where only the string ".." is checked; manipulated ".." sequences in torrent filenames (e.g., "../") can allow a remote attacker to overwrite arbitrary files. This stems from an incomplete fix...
CVE-2007-1384
Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.2 allows remote attackers to overwrite arbitrary files via ".." sequences in a torrent filename...
CVE-2007-1385
chunkcounter.cpp in KTorrent before 2.1.2 allows remote attackers to cause a denial of service crash and heap corruption via a negative or large idx value...