低危 Transmission越界内存破坏漏洞
CVE编号
CVE-2014-4909利用情况
暂无补丁情况
官方补丁披露时间
2014-07-30漏洞描述
Transmission是一种BitTorrent客户端,特点是一个跨平台的后端和其上的简洁的用户界面。 Transmission存在越界内存破坏漏洞,允许攻击者利用漏洞使应用程序崩溃。解决建议
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:https://trac.transmissionbt.com/wiki/Changes受影响软件情况
| # | 类型 | 厂商 | 产品 | 版本 | 影响面 | ||||
| 1 | |||||||||
|---|---|---|---|---|---|---|---|---|---|
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | * | Up to (including) 2.83 | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.1 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.2 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.3 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.4 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.5 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.6 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.6.1 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.70 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.71 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.72 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.80 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.81 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.82 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.90 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.91 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.92 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.93 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.94 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.95 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 0.96 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.00 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.01 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.02 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.03 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.04 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.05 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.06 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.10 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.11 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.2 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.20 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.21 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.22 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.30 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.31 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.32 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.33 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.34 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.40 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.41 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.42 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.50 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.51 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.52 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.53 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.54 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.60 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.61 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.70 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.71 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.72 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.73 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.74 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.75 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.76 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.77 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.80 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.81 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.82 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.83 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.90 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.91 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.92 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 1.93 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.00 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.01 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.02 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.03 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.04 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.10 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.11 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.12 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.13 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.20 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.21 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.22 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.30 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.31 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.32 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.33 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.40 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.41 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.42 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.50 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.51 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.52 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.60 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.61 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.70 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.71 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.72 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.73 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.74 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.75 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.76 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.77 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.80 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.81 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | transmissionbt | transmission | 2.82 | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | amazon_AMI | transmission | * | Up to (excluding) 2.84-1.9.amzn1 | |||||
| 运行在以下环境 | |||||||||
| 系统 | canonical | ubuntu_linux | 12.04 | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | canonical | ubuntu_linux | 13.10 | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | canonical | ubuntu_linux | 14.04 | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | debian | DPKG | * | Up to (excluding) 2.84-0.1 | |||||
| 运行在以下环境 | |||||||||
| 系统 | debian_10 | transmission | * | Up to (excluding) 2.84-0.1 | |||||
| 运行在以下环境 | |||||||||
| 系统 | debian_11 | transmission | * | Up to (excluding) 2.84-0.1 | |||||
| 运行在以下环境 | |||||||||
| 系统 | debian_12 | transmission | * | Up to (excluding) 2.84-0.1 | |||||
| 运行在以下环境 | |||||||||
| 系统 | debian_7 | transmission | * | Up to (excluding) 2.52-3+nmu2 | |||||
| 运行在以下环境 | |||||||||
| 系统 | debian_sid | transmission | * | Up to (excluding) 2.84-0.1 | |||||
| 运行在以下环境 | |||||||||
| 系统 | fedoraproject | fedora | 20 | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | gentoo | linux | * | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | ubuntu_12.04.5_lts | transmission | * | Up to (excluding) 2.51-0ubuntu1.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | ubuntu_14.04 | transmission | * | Up to (excluding) 2.82-1.1ubuntu3.1 | |||||
| 运行在以下环境 | |||||||||
| 系统 | ubuntu_14.04.6_lts | transmission | * | Up to (excluding) 2.82-1.1ubuntu3.1 | |||||
- 攻击路径 远程
- 攻击复杂度 复杂
- 权限要求 无需权限
- 影响范围 有限影响
- EXP成熟度 未验证
- 补丁情况 官方补丁
- 数据保密性 数据泄露
- 数据完整性 传输被破坏
- 服务器危害 DoS
- 全网数量 N/A
| CWE-ID | 漏洞类型 |
| CWE-189 | 数值错误 |
Exp相关链接
版权声明
本站原创文章转载请注明文章出处及链接,谢谢合作!
评论