KTorrent vulnerability

2007-05-18T00:00:00
ID USN-436-2
Type ubuntu
Reporter Ubuntu
Modified 2007-05-18T00:00:00

Description

USN-436-1 fixed a vulnerability in KTorrent. The original fix for path traversal was incomplete, allowing for alternate vectors of attack.
This update solves the problem.

Original advisory details:

Bryan Burns of Juniper Networks discovered that KTorrent did not correctly validate the destination file paths nor the HAVE statements sent by torrent peers. A malicious remote peer could send specially crafted messages to overwrite files or execute arbitrary code with user privileges.