Security Advisory

CVE-2009-3617

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-10-20 17:00:00

Last updated 2024-08-07 06:31:11

Assigner redhat

State PUBLISHED

Description

Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in aria2 before 1.6.2, when logging is enabled, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via format string specifiers in a download URI. NOTE: some of these details are obtained from third party information.

← Browse all CVEs View on cve.org ↗