CVE-2009-0184

critical

Description

Multiple buffer overflows in the torrent parsing implementation in Free Download Manager (FDM) 2.5 Build 758 and 3.0 Build 844 allow remote attackers to execute arbitrary code via (1) a long file name within a torrent file, (2) a long tracker URL in a torrent file, or (3) a long comment in a torrent file.

References

http://www.vupen.com/english/advisories/2009/0302

http://www.securityfocus.com/bid/33555

http://www.securityfocus.com/archive/1/500605/100/0/threaded

http://secunia.com/secunia_research/2009-5/

http://secunia.com/advisories/33524

Details

Source: Mitre, NVD

Published: 2009-02-03

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.27916