CVE-2010-1853
EPSS 3.0%
Description
Multiple stack-based buffer overflows in the tr_magnetParse function in libtransmission/magnet.c in Transmission 1.91 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted magnet URL with a large number of (1) tr or (2) ws links.
How to fix CVE-2010-1853
To remediate CVE-2010-1853, upgrade the affected package to a fixed version below.
- Debian/transmission—upgrade to 1.92-1 or later
Is CVE-2010-1853 being exploited?
Low — EPSS is 3.0%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1.92-1