|
From: | anonymous |
Subject: | [Mldonkey-bugs] [bugs #12376] Gaping security hole (GIFT gui support) |
Date: | Sat, 19 Mar 2005 19:21:17 +0000 |
User-agent: | Links (2.0pre6; Linux 2.4.29-rc1-lck1 i586; 160x60) |
URL: <http://savannah.nongnu.org/bugs/?func=detailitem&item_id=12376> Summary: Gaping security hole (GIFT gui support) Project: mldonkey, a multi-networks file-sharing client Submitted by: None Submitted on: Sat 03/19/05 at 14:21 Category: Core Severity: 5 - Average Item Group: Program malfunction Status: None Privacy: Public Assigned to: None Open/Closed: Open Release: None Release: all Platform Version: None Binaries Origin: None CPU type: None _______________________________________________________ Details: GIFT port is open by default and does not have any authentication mechanism. Anyone with the ability to connect to this port can obtain control over the core. This is a huge gaping security hole. Please fix asap. _______________________________________________________ Reply to this item at: <http://savannah.nongnu.org/bugs/?func=detailitem&item_id=12376> _______________________________________________ Message sent via/by Savannah http://savannah.nongnu.org/
[Prev in Thread] | Current Thread | [Next in Thread] |