CVE-2009-0753

Опубликовано: 03 мар. 2009

Источник: debian

EPSS Средний

Описание

Absolute path traversal vulnerability in MLDonkey 2.8.4 through 2.9.7 allows remote attackers to read arbitrary files via a leading "//" (double slash) in the filename.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
mldonkey	fixed	3.0.0-1		package
mldonkey	not-affected		etch	package

Примечания

daemon is run as non-root and can only be exploited via localhost

EPSS

Процентиль: 93%

0.10202

Средний

Связанные уязвимости

CVE-2009-0753

ubuntu

почти 17 лет назад

Absolute path traversal vulnerability in MLDonkey 2.8.4 through 2.9.7 allows remote attackers to read arbitrary files via a leading "//" (double slash) in the filename.

CVE-2009-0753

redhat

почти 17 лет назад

Absolute path traversal vulnerability in MLDonkey 2.8.4 through 2.9.7 allows remote attackers to read arbitrary files via a leading "//" (double slash) in the filename.

CVE-2009-0753

nvd

почти 17 лет назад

Absolute path traversal vulnerability in MLDonkey 2.8.4 through 2.9.7 allows remote attackers to read arbitrary files via a leading "//" (double slash) in the filename.

GHSA-c8w3-hh73-w2mx

github

почти 4 года назад

Absolute path traversal vulnerability in MLDonkey 2.8.4 through 2.9.7 allows remote attackers to read arbitrary files via a leading "//" (double slash) in the filename.

EPSS

Процентиль: 93%

0.10202

Средний