CVE-2010-0998

Free Download Manager <3.0.852 - RCE

Title source: llm
STIX 2.1

Description

Multiple stack-based buffer overflows in Free Download Manager (FDM) before 3.0.852 allow remote attackers to execute arbitrary code via vectors involving (1) the folders feature in Site Explorer, (2) the websites feature in Site Explorer, (3) an FTP URI, or (4) a redirect.

References (10)

Core 10
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/58626
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/64671
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/39447
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/64672
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/40146
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/511282/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7006
Vendor Advisory x_refsource_misc
http://secunia.com/secunia_research/2010-68/
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/64674
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/64673

Scores

EPSS 0.0643
EPSS Percentile 92.9%

Details

CWE
CWE-119
Status published
Products (9)
freedownloadmanager/free_download_manager 2
freedownloadmanager/free_download_manager 2.1
freedownloadmanager/free_download_manager 2.5.700
freedownloadmanager/free_download_manager 2.5.704
freedownloadmanager/free_download_manager 2.5.724
freedownloadmanager/free_download_manager 3.0.843
freedownloadmanager/free_download_manager 3.0.848
freedownloadmanager/free_download_manager 3.0.850
freedownloadmanager/free_download_manager < 3.0.851
Published May 17, 2010
Tracked Since Feb 18, 2026