LimeWire 4.1.2 up to and including 4.5.6 allows remote malicious users to read arbitrary files by specifying the full pathname in a Gnutella GET request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
limewire limewire 4.1.2 |
||
limewire limewire 4.5.6 |