cbcvebase.

Akamai Technologies Download Manager vulnerabilities

4 known vulnerabilities affecting akamai_technologies/download_manager.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL3MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2007-1891P3CRITICALCVSS 9.3v2.2.0.02007-04-18
CVE-2007-1891 [CRITICAL] CVE-2007-1891: Stack-based buffer overflow in the GetPrivateProfileSectionW function in Akamai Technologies Downloa Stack-based buffer overflow in the GetPrivateProfileSectionW function in Akamai Technologies Download Manager ActiveX Control (DownloadManagerV2.ocx) after 2.0.4.4 but before 2.2.1.0 allows remote attackers to execute arbitrary code, related to misinterpretation of the nSize parameter as a byte count instead of a wide character count.
nvd
CVE-2009-2582P3CRITICALCVSS 9.3≤ 2.2.4.3v2.0.4.4+4 more2009-07-23
CVE-2009-2582 [CRITICAL] CVE-2009-2582: Stack-based buffer overflow in manager.exe in Akamai Download Manager (aka DLM or dlmanager) before Stack-based buffer overflow in manager.exe in Akamai Download Manager (aka DLM or dlmanager) before 2.2.4.8 allows remote web servers to execute arbitrary code via a malformed HTTP response during a Redswoosh download, a different vulnerability than CVE-2007-1891 and CVE-2007-1892.
nvd
CVE-2007-1892P3CRITICALCVSS 9.3v2.2.0.02007-04-18
CVE-2007-1892 [CRITICAL] CVE-2007-1892: Stack-based buffer overflow in Akamai Technologies Download Manager ActiveX Control (DownloadManager Stack-based buffer overflow in Akamai Technologies Download Manager ActiveX Control (DownloadManagerV2.ocx) before 2.2.1.0 allows remote attackers to execute arbitrary code via unspecified vectors, a different issue than CVE-2007-1891.
nvd
CVE-2007-6339P3MEDIUMCVSS 6.8≤ 2.2.0.0≤ 2.2.1.02008-05-01
CVE-2007-6339 [MEDIUM] CWE-94 CVE-2007-6339: The Akamai Download Manager (aka DLM or dlmanager) ActiveX control (DownloadManagerV2.ocx) before 2. The Akamai Download Manager (aka DLM or dlmanager) ActiveX control (DownloadManagerV2.ocx) before 2.2.3.5 allows remote attackers to force the download and execution of arbitrary code via unspecified "undocumented object parameters."
nvd
Akamai Technologies Download Manager vulnerabilities | cvebase