oss-sec mailing list archives

Re: CVE request: transmission <1.61 CSRF

From: "Steven M. Christey" <coley () linus mitre org>
Date: Thu, 21 May 2009 20:23:06 -0400 (EDT)


======================================================
Name: CVE-2009-1757
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1757
Reference: MLIST:[oss-security] 20090521 CVE request: transmission <1.61 CSRF
Reference: URL:http://www.openwall.com/lists/oss-security/2009/05/21/1
Reference: CONFIRM:http://www.transmissionbt.com/index.php

Cross-site request forgery (CSRF) vulnerability in Transmission 1.5
before 1.53 and 1.6 before 1.61 allows remote attackers to hijack the
authentication of unspecified victims via unknown vectors.

Current thread:

CVE request: transmission <1.61 CSRF Marcus Meissner (May 20)
- Re: CVE request: transmission <1.61 CSRF Steven M. Christey (May 21)