Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Gentoo: 200902-05 High: KTorrent Multiple Issues Impact Code Execution

gentoo
Calendar Grey February 23, 2009
Dist Gentoo Esm H88
KTorrent has critical vulnerabilities that enable remote code execution, making it crucial for users to update their systems quickly to prevent potential risks
Two vulnerabilities in the web interface plugin in KTorrent allow for remote execution of code and arbitrary torrent uploads.

Summary

Gentoo Linux Security Advisory GLSA 200902-05 https://security.gentoo.org/ Severity: High Title: KTorrent: Multiple vulnerabilitites Date: February 23, 2009 Bugs: #244741 ID: 200902-05

Synopsis ======= Two vulnerabilities in the web interface plugin in KTorrent allow for remote execution of code and arbitrary torrent uploads.
Background ========= KTorrent is a BitTorrent program for KDE.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-p2p/ktorrent < 2.2.8 >= 2.2.8
========== The web interface plugin does not restrict access to the torrent upload functionality (CVE-2008-5905) and does not sanitize request parametersproperly (CVE-2008-5906) .
Impact =...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory Gentoo high severity code execution remote execution web interface KTorrent

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory Gentoo high severity code execution remote execution web interface KTorrent

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here