|Title:||Free Download Manager Multiple Buffer Overflow Vulnerabilities|
|Summary:||This host has Free Download Manager installed and is prone to; multiple buffer overflow vulnerabilities.|
This host has Free Download Manager installed and is prone to
multiple buffer overflow vulnerabilities.
Multiple buffer overflow errors exists due to boundary errors when,
- opening folders within the 'Site Explorer'
- opening websites in the 'Site Explorer' functionality
- setting the directory on 'FTP' servers
- handling redirects and
- Sanitising the 'name' attribute of the 'file' element of
metalink files before using it to download files.
Successful exploitation could allow remote attackers to execute arbitrary code
in the context of the application or to compromise the application and the
Free Download Manager version prior to 3.0 build 852 on Windows.
Upgrade to version 3.0 build 852.
Common Vulnerability Exposure (CVE) ID: CVE-2010-0998|
BugTraq ID: 40146
Bugtraq: 20100513 Secunia Research: Free Download Manager Four Buffer Overflow Vulnerabilities (Google Search)
XForce ISS Database: fdm-siteexplorer-bo(58626)
Common Vulnerability Exposure (CVE) ID: CVE-2010-0999
BugTraq ID: 40152
Bugtraq: 20100513 Secunia Research: Free Download Manager metalink "name" Directory Traversal (Google Search)
XForce ISS Database: fdm-name-directory-traversal(58627)
|Copyright||Copyright (c) 2010 Greenbone Networks GmbH|
|This is only one of 73533 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.