RSS   Podatności dla 'Libtorrent'   RSS

2009-06-11
 
CVE-2009-1760

CWE-22
 

 
Directory traversal vulnerability in src/torrent_info.cpp in Rasterbar libtorrent before 0.14.4, as used in firetorrent, qBittorrent, deluge Torrent, and other applications, allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) and partial relative pathname in a Multiple File Mode list element in a .torrent file.

 
2008-02-07
 
CVE-2008-0646

CWE-119
 

 
The bdecode_recursive function in include/libtorrent/bencode.hpp in Rasterbar Software libtorrent before 0.12.1, as used in Deluge before 0.5.8.3 and other products, allows context-dependent attackers to cause a denial of service (stack exhaustion and crash) via a crafted bencoded message.

 


Copyright 2022, cxsecurity.com

 

Back to Top