|
|
 |
| New User, Welcome! Login |
Re: Secunia Research: KDE KGet Insecure File Operation Vulnerability
| From: |
"Vladimir '3APA3A' Dubrovin" <3APA3A SECURITY NNOV RU> |
| To: |
Secunia Research <remove-vuln secunia com> |
| Cc: |
bugtraq securityfocus com |
| Subject: |
Re: Secunia Research: KDE KGet Insecure File Operation Vulnerability |
| Date: |
Fri - May 14, 2010 12:11 PM |
Dear Secunia Research,
SR> The vulnerability is caused by KGet downloading files without the
SR> user's acknowledgment, overwriting existing files of the same name
SR> when displaying a dialog box that allows a user to choose the file to
SR> download out of the options offered by a metalink file.
SR> The Common Vulnerabilities and Exposures (CVE) project has assigned
SR> CVE-2010-1511 for the vulnerability.
Is it same vulnerability with CVE-2010-1000 or different?
(CVE-2010-1000: It was discovered that KGet did not properly perform
input validation when processing metalink files. If a user were tricked
into opening a crafted metalink file, a remote attacker could overwrite
files via directory traversal, which could eventually lead to arbitrary
code execution. )
--
Skype: Vladimir.Dubrovin
~/ZARAZA http://securityvulns.com/
|
|
|
Copyright © 1995-2012 LinuxRocket.net. All rights reserved.
Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!
