First Last Prev Next    No search results available      Search page      Enter new bug
Bug#: 85380
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Jean-François Brunette (RETIRED) <formula7@gentoo.org>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
plasmaroo:
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 85380 depends on: Show dependency tree
Bug 85380 blocks:

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2005-03-15 11:35 0000 
Description:
Kevin Walsh has reported two vulnerabilities in LimeWire, which can be exploited by malicious people to disclose sensitive information.

1) An input validation error in the HTTP handling can be exploited to disclose the content of arbitrary files via a specially crafted request.

Example:
/gnutella/res/[file_with_absolute_path]

The vulnerability has been reported in versions 4.1.2 through 4.5.6.

2) An input validation error in the handling of "magnet" requests can be exploited to disclose the content of arbitrary files via directory traversal attacks.

Example:
/magnet10/../../[file]

The vulnerability has been reported in versions 3.9.6 through 4.6.0.

Solution:
Update to version 4.8 or later.
http://www.limewire.com/english/content/download.shtml

------- Comment #1 From Thierry Carrez (RETIRED) 2005-03-15 12:18:17 0000 ------- 
net-p2p, please comment/bump

------- Comment #2 From Omer Hasan 2005-03-21 15:53:37 0000 ------- 
hey I wondering if this issue will be fixed soon considering it is a
vulnerability in the application versus a feature update. 

Thanks.

------- Comment #3 From Karol Wojtaszek (RETIRED) 2005-03-21 23:34:44 0000 ------- 
Bumped in portage

------- Comment #4 From Thierry Carrez (RETIRED) 2005-03-22 03:05:12 0000 ------- 
Thks Karol,
x86: please test and mark stable

------- Comment #5 From Karol Wojtaszek (RETIRED) 2005-03-22 05:22:53 0000 ------- 
*** Bug 85272 has been marked as a duplicate of this bug. ***

------- Comment #6 From Thierry Carrez (RETIRED) 2005-03-25 05:34:41 0000 ------- 
x86/sekretarz: please test and mark x86-stable

------- Comment #7 From Olivier Crete 2005-03-28 18:51:07 0000 ------- 
stable on x86, sorry for the delay

------- Comment #8 From Sune Kloppenborg Jeppesen 2005-03-28 20:58:49 0000 ------- 
This one is ready for GLSA vote. I tend to vote NO.

------- Comment #9 From Thierry Carrez (RETIRED) 2005-03-28 23:58:13 0000 ------- 
This can be used remotely to leak the contents of any file, I vote YES.

------- Comment #10 From Tim Yamin (RETIRED) 2005-03-30 06:56:14 0000 ------- 
Vote++

------- Comment #11 From Thierry Carrez (RETIRED) 2005-03-31 03:56:13 0000 ------- 
GLSA 200503-37
First Last Prev Next    No search results available      Search page      Enter new bug