Tonec Internet Download Manager (IDM) is a tool for increasing download speeds by up to 5 times, resuming and scheduling downloads. It features comprehensive error recovery and resume capability due to lost connections, network problems, or unexpected power outages. It also possesses the ability to integrate with most browsers to provide a seamless downloading experience.

Tonec Internet Download Manager

Stack-based buffer overflow in Internet Download Manager (IDM) before 5.19 allows remote attackers to execute arbitrary code via a crafted FTP URI that causes unspecified "test sequences" to be sent from client to server.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2010-0995	HIGH	9.3	Tonec Internet Download Manager	cpe:2.3:a:tonec:internet_download_manager	No	Yes	May 06, 2010
CVE-2025-56231	CRITICAL	9.1	Tonec Internet Download Manager	cpe:2.3:a:tonec:internet_download_manager	No	No	Nov 05, 2025
CVE-2020-23060	HIGH	7.1	Tonec Internet Download Manager	cpe:2.3:a:tonec:internet_download_manager	No	Yes	Oct 22, 2021
CVE-2020-28964	MEDIUM	6.7	Tonec Internet Download Manager	cpe:2.3:a:tonec:internet_download_manager	No	Yes	Oct 22, 2021

CVE-2010-0995:
Tonec Internet Download Manager vulnerability analysis and mitigation

9.3

Related Tonec Internet Download Manager vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2010-0995: Tonec Internet Download Manager vulnerability analysis and mitigation