Freedownloadmanager » Free Download Manager : Security Vulnerabilities, CVEs,

CVE-2014-2087

Stack-based buffer overflow in the CDownloads_Deleted::UpdateDownload function in Downloads_Deleted.cpp in Free Download Manager 3.9.3 build 1360, 3.8 build 1173, 3.0 build 852, and earlier allows user-assisted remote attackers to execute arbitrary code via a long file name, which is then deleted from the download queue by the user.
Max CVSS
9.3
EPSS Score
44.92%
Published
2014-03-18
Updated
2018-10-09

CVE-2010-0999

Directory traversal vulnerability in Free Download Manager (FDM) before 3.0.852 allows remote attackers to create arbitrary files via directory traversal sequences in the name attribute of a file element in a metalink file.
Max CVSS
7.1
EPSS Score
0.82%
Published
2010-05-17
Updated
2018-10-10

CVE-2010-0998

Multiple stack-based buffer overflows in Free Download Manager (FDM) before 3.0.852 allow remote attackers to execute arbitrary code via vectors involving (1) the folders feature in Site Explorer, (2) the websites feature in Site Explorer, (3) an FTP URI, or (4) a redirect.
Max CVSS
10.0
EPSS Score
25.63%
Published
2010-05-17
Updated
2018-10-10
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close