18 matches found
📄 libtransmission 2.93 Integer Overflow
libtransmission versions 2.93 and below suffer from multiple integer overflows. A remote attacker could create a specially crafted .torrent file which may be small when compressed that exploits these overflows when a victim loads it via Transmission or its command-line interface transmission-cli...
SUSE CVE-2010-0012
Directory traversal vulnerability in libtransmission/metainfo.c in Transmission 1.22, 1.34, 1.75, and 1.76 allows remote attackers to overwrite arbitrary files via a .. dot dot in a pathname within a .torrent file...
CVE-2018-10756
Use-after-free in libtransmission/variant.c in Transmission before 3.00 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted torrent file...
DEBIAN-CVE-2018-10756
Use-after-free in libtransmission/variant.c in Transmission before 3.00 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted torrent file...
CVE-2018-10756
Use-after-free in libtransmission/variant.c in Transmission before 3.00 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted torrent file...
CVE-2018-10756
Use-after-free in libtransmission/variant.c in Transmission before 3.00 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted torrent file...
Design/Logic Flaw
Use-after-free in libtransmission/variant.c in Transmission before 3.00 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted torrent file...
CVE-2018-10756
Transmission prior to version 3.00 contains a use-after-free in libtransmission/variant.c that can be triggered by a crafted torrent file, allowing a remote attacker to cause a crash or potentially execute arbitrary code. The vulnerability affects the downloader’s handling of torrent data and cou...
CVE-2018-10756
Use-after-free in libtransmission/variant.c in Transmission before 3.00 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted torrent file...
CVE-2018-10756
Use-after-free in libtransmission/variant.c in Transmission before 3.00 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted torrent file...
CVE-2018-10756
Use-after-free in libtransmission/variant.c in Transmission before 3.00 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted torrent file...
Transmission - Integer Overflows Parsing Torrent Files
Transmission - Integer Overflows Parsing Torrent Files I took a look at torrent file parsing in libtransmission, there are a few integer overflows because the trnew/trnew0 allocation wrappers don't handle overflow. define trnewstructtype, nstructs \ structtype trmalloc sizeof structtype...
Transmission - Integer Overflows Parsing Torrent Files
I took a look at torrent file parsing in libtransmission, there are a few integer overflows because the trnew/trnew0 allocation wrappers don't handle overflow. define trnewstructtype, nstructs \ structtype trmalloc sizeof structtype sizetnstructs define trnew0structtype, nstructs \ structtype...
CVE-2010-1853
Multiple stack-based buffer overflows in the trmagnetParse function in libtransmission/magnet.c in Transmission 1.91 allow remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted magnet URL with a large number of 1 tr or 2 ws links...
CVE-2010-1853
Multiple stack-based buffer overflows in the trmagnetParse function in libtransmission/magnet.c in Transmission 1.91 allow remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted magnet URL with a large number of 1 tr or 2 ws links...
CVE-2010-1853
Transmission 1.91 is affected by multiple stack-based buffer overflows in libtransmission/magnet.c (tr_magnetParse). A crafted magnet URL containing a large number of tr or ws links can cause denial of service (crash) and may allow arbitrary code execution. Remediation per Gentoo GLSA and related...
CVE-2010-0012
Directory traversal vulnerability in libtransmission/metainfo.c in Transmission 1.22, 1.34, 1.75, and 1.76 allows remote attackers to overwrite arbitrary files via a .. dot dot in a pathname within a .torrent file...
CVE-2010-0012
CVE-2010-0012 is a directory traversal in Transmission’s libtransmission/metainfo.c that allows a remote attacker to overwrite arbitrary files via a .. in a torrent path. Affected versions include Transmission 1.22, 1.34, 1.75, and 1.76. The underlying issue is insufficient sanitization of file n...