Internet Download Manager FTP Buffer Overflow Vulnerability
BID:39822
Info
Internet Download Manager FTP Buffer Overflow Vulnerability
| Bugtraq ID: | 39822 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2010-0995 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 27 2010 12:00AM |
| Updated: | Apr 13 2015 09:02PM |
| Credit: | Stefan Cornelius, Secunia Research |
| Vulnerable: |
Internet Download Manager Corp. Internet Download Manager 5.18 |
| Not Vulnerable: |
Internet Download Manager Corp. Internet Download Manager 5.19 |
Discussion
Internet Download Manager FTP Buffer Overflow Vulnerability
Internet Download Manager (IDM) is prone to a remote buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.
An attacker may exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.
This issue affects IDM 5.18; prior versions may also be vulnerable.
Internet Download Manager (IDM) is prone to a remote buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.
An attacker may exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.
This issue affects IDM 5.18; prior versions may also be vulnerable.
Exploit / POC
Internet Download Manager FTP Buffer Overflow Vulnerability
Currently we are not aware of any exploits for the issue. If you feel we are in error or if you aware of any more recent information, please mail us at: [email protected].
Currently we are not aware of any exploits for the issue. If you feel we are in error or if you aware of any more recent information, please mail us at: [email protected].
Solution / Fix
Internet Download Manager FTP Buffer Overflow Vulnerability
Solution:
Updates are available. Please the references for more information.
Solution:
Updates are available. Please the references for more information.
References
Internet Download Manager FTP Buffer Overflow Vulnerability
References:
References:
- Internet Download Manager Homepage (Internet Download Manager Corp.)
- Internet Download Manager News (Internet Download Manager)
- Secunia Research: Internet Download Manager FTP Buffer Overflow Vulnerability (Secunia)