CVE-2010-1853
Severity CVSS v4.0:
Pending analysis
Type:
CWE-119
Buffer Errors
Publication date:
07/05/2010
Last modified:
11/04/2025
Description
Multiple stack-based buffer overflows in the tr_magnetParse function in libtransmission/magnet.c in Transmission 1.91 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted magnet URL with a large number of (1) tr or (2) ws links.
Impact
Base Score 2.0
6.80
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:transmissionbt:transmission:1.91:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://secunia.com/advisories/39031
- http://trac.transmissionbt.com/changeset/10279
- http://trac.transmissionbt.com/ticket/2965
- http://trac.transmissionbt.com/wiki/Changes
- http://www.osvdb.org/63066
- http://www.securityfocus.com/bid/38814
- http://www.vupen.com/english/advisories/2010/0655
- http://secunia.com/advisories/39031
- http://trac.transmissionbt.com/changeset/10279
- http://trac.transmissionbt.com/ticket/2965
- http://trac.transmissionbt.com/wiki/Changes
- http://www.osvdb.org/63066
- http://www.securityfocus.com/bid/38814
- http://www.vupen.com/english/advisories/2010/0655