Directory traversal vulnerability in src/torrent_info.cpp in Rasterbar libtorrent prior to 0.14.4, as used in firetorrent, qBittorrent, deluge Torrent, and other applications, allows remote malicious users to create or overwrite arbitrary files via a .. (dot dot) and partial relative pathname in a Multiple File Mode list element in a .torrent file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rasterbar software libtorrent |
||
rasterbar software libtorrent 0.12.1 |
||
rasterbar software libtorrent 0.12 |
||
rasterbar software libtorrent 0 |