Vulnerability Description
Multiple stack-based buffer overflows in Free Download Manager (FDM) before 3.0.852 allow remote attackers to execute arbitrary code via vectors involving (1) the folders feature in Site Explorer, (2) the websites feature in Site Explorer, (3) an FTP URI, or (4) a redirect.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Freedownloadmanager | Free Download Manager | <= 3.0.851 |
Related Weaknesses (CWE)
References
- http://osvdb.org/64671
- http://osvdb.org/64672
- http://osvdb.org/64673
- http://osvdb.org/64674
- http://secunia.com/advisories/39447Vendor Advisory
- http://secunia.com/secunia_research/2010-68/Vendor Advisory
- http://www.securityfocus.com/archive/1/511282/100/0/threaded
- http://www.securityfocus.com/bid/40146
- https://exchange.xforce.ibmcloud.com/vulnerabilities/58626
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://osvdb.org/64671
- http://osvdb.org/64672
- http://osvdb.org/64673
- http://osvdb.org/64674
- http://secunia.com/advisories/39447Vendor Advisory
FAQ
What is CVE-2010-0998?
CVE-2010-0998 is a vulnerability with a CVSS score of 10.0 (HIGH). Multiple stack-based buffer overflows in Free Download Manager (FDM) before 3.0.852 allow remote attackers to execute arbitrary code via vectors involving (1) the folders feature in Site Explorer, (2)...
How severe is CVE-2010-0998?
CVE-2010-0998 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-0998?
Check the references section above for vendor advisories and patch information. Affected products include: Freedownloadmanager Free Download Manager.