CVE-2009-1440

EPSS 0.97%

amule - insufficient input sanitising

發布日:2009/4/27修改日:2026/4/28

描述

Incomplete blacklist vulnerability in DownloadListCtrl.cpp in amule 2.2.4 allows remote attackers to conduct argument injection attacks into a command for mplayer via a crafted filename.

受影響套件(2)

Debian/amulefrom 0, < 2.2.5-1.1
Debian/amulefrom 0, < 2.2.1-1+lenny2

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2009-1440