Lucene search

[email protected]CVE-2010-1512

HistoryMay 17, 2010 - 9:00 p.m.

CVE-2010-1512

2010-05-1721:00:01

CWE-22

[email protected]

web.nvd.nist.gov

cve-2010-1512

directory traversal

vulnerability

aria2

remote attack

arbitrary files

metalink file

nvd

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.5 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

79.9%

JSON

Directory traversal vulnerability in aria2 before 1.9.3 allows remote attackers to create arbitrary files via directory traversal sequences in the name attribute of a file element in a metalink file.

Affected configurations

NVD

Node

tatsuhiro_tsujikawaaria2Range≤1.9.2

tatsuhiro_tsujikawaaria2Match0.1.0

tatsuhiro_tsujikawaaria2Match0.2.0

tatsuhiro_tsujikawaaria2Match0.2.1

tatsuhiro_tsujikawaaria2Match0.2.1\+1

tatsuhiro_tsujikawaaria2Match0.2.1\+2

tatsuhiro_tsujikawaaria2Match0.3.0

tatsuhiro_tsujikawaaria2Match0.3.1

tatsuhiro_tsujikawaaria2Match0.3.1\+1

tatsuhiro_tsujikawaaria2Match0.3.1\+2

tatsuhiro_tsujikawaaria2Match0.3.2

tatsuhiro_tsujikawaaria2Match0.4.0

tatsuhiro_tsujikawaaria2Match0.4.1

tatsuhiro_tsujikawaaria2Match0.5.0

tatsuhiro_tsujikawaaria2Match0.5.0\+1

tatsuhiro_tsujikawaaria2Match0.5.0\+2

tatsuhiro_tsujikawaaria2Match0.5.1

tatsuhiro_tsujikawaaria2Match0.5.2

tatsuhiro_tsujikawaaria2Match0.6.0

tatsuhiro_tsujikawaaria2Match0.6.0\+1

tatsuhiro_tsujikawaaria2Match0.7.0

tatsuhiro_tsujikawaaria2Match0.7.1

tatsuhiro_tsujikawaaria2Match0.7.2

tatsuhiro_tsujikawaaria2Match0.7.3

tatsuhiro_tsujikawaaria2Match0.8.0

tatsuhiro_tsujikawaaria2Match0.8.1

tatsuhiro_tsujikawaaria2Match0.9.0

tatsuhiro_tsujikawaaria2Match0.10.0

tatsuhiro_tsujikawaaria2Match0.10.0\+1

tatsuhiro_tsujikawaaria2Match0.10.1

tatsuhiro_tsujikawaaria2Match0.10.2

tatsuhiro_tsujikawaaria2Match0.10.2\+1

tatsuhiro_tsujikawaaria2Match0.11.0

tatsuhiro_tsujikawaaria2Match0.11.1

tatsuhiro_tsujikawaaria2Match0.11.1\+1

tatsuhiro_tsujikawaaria2Match0.11.2

tatsuhiro_tsujikawaaria2Match0.11.3

tatsuhiro_tsujikawaaria2Match0.11.4

tatsuhiro_tsujikawaaria2Match0.11.5

tatsuhiro_tsujikawaaria2Match0.12.0

tatsuhiro_tsujikawaaria2Match0.12.1

tatsuhiro_tsujikawaaria2Match0.13.0

tatsuhiro_tsujikawaaria2Match0.13.0\+1

tatsuhiro_tsujikawaaria2Match0.13.1

tatsuhiro_tsujikawaaria2Match0.13.1\+1

tatsuhiro_tsujikawaaria2Match0.13.1\+2

tatsuhiro_tsujikawaaria2Match0.13.2

tatsuhiro_tsujikawaaria2Match0.13.2\+1

tatsuhiro_tsujikawaaria2Match0.14.0

tatsuhiro_tsujikawaaria2Match0.14.0\+1

tatsuhiro_tsujikawaaria2Match0.15.0

tatsuhiro_tsujikawaaria2Match0.15.1

tatsuhiro_tsujikawaaria2Match0.15.1\+1

tatsuhiro_tsujikawaaria2Match0.15.1\+2

tatsuhiro_tsujikawaaria2Match0.15.2

tatsuhiro_tsujikawaaria2Match0.15.3

tatsuhiro_tsujikawaaria2Match0.16.0

tatsuhiro_tsujikawaaria2Match0.16.1

tatsuhiro_tsujikawaaria2Match0.16.2

tatsuhiro_tsujikawaaria2Match1.0.0

tatsuhiro_tsujikawaaria2Match1.0.1

tatsuhiro_tsujikawaaria2Match1.1.0

tatsuhiro_tsujikawaaria2Match1.1.1

tatsuhiro_tsujikawaaria2Match1.1.2

tatsuhiro_tsujikawaaria2Match1.2.0

tatsuhiro_tsujikawaaria2Match1.3.0

tatsuhiro_tsujikawaaria2Match1.3.1

tatsuhiro_tsujikawaaria2Match1.3.2

tatsuhiro_tsujikawaaria2Match1.3.3

tatsuhiro_tsujikawaaria2Match1.4.0

tatsuhiro_tsujikawaaria2Match1.4.1

tatsuhiro_tsujikawaaria2Match1.5.0

tatsuhiro_tsujikawaaria2Match1.5.0b\+20090716

tatsuhiro_tsujikawaaria2Match1.5.1

tatsuhiro_tsujikawaaria2Match1.5.2

tatsuhiro_tsujikawaaria2Match1.6.0

tatsuhiro_tsujikawaaria2Match1.6.1

tatsuhiro_tsujikawaaria2Match1.6.2

tatsuhiro_tsujikawaaria2Match1.6.3

tatsuhiro_tsujikawaaria2Match1.7.0

tatsuhiro_tsujikawaaria2Match1.7.1

tatsuhiro_tsujikawaaria2Match1.7.2

tatsuhiro_tsujikawaaria2Match1.8.0

tatsuhiro_tsujikawaaria2Match1.8.1

tatsuhiro_tsujikawaaria2Match1.8.2

tatsuhiro_tsujikawaaria2Match1.8.3

tatsuhiro_tsujikawaaria2Match1.9.0

tatsuhiro_tsujikawaaria2Match1.9.1

CPENameOperatorVersion
tatsuhiro_tsujikawa:aria2tatsuhiro tsujikawa aria2le1.9.2
tatsuhiro_tsujikawa:aria2tatsuhiro tsujikawa aria2eq0.1.0
tatsuhiro_tsujikawa:aria2tatsuhiro tsujikawa aria2eq0.2.0
tatsuhiro_tsujikawa:aria2tatsuhiro tsujikawa aria2eq0.2.1
tatsuhiro_tsujikawa:aria2tatsuhiro tsujikawa aria2eq0.2.1+1
tatsuhiro_tsujikawa:aria2tatsuhiro tsujikawa aria2eq0.2.1+2
tatsuhiro_tsujikawa:aria2tatsuhiro tsujikawa aria2eq0.3.0
tatsuhiro_tsujikawa:aria2tatsuhiro tsujikawa aria2eq0.3.1
tatsuhiro_tsujikawa:aria2tatsuhiro tsujikawa aria2eq0.3.1+1
tatsuhiro_tsujikawa:aria2tatsuhiro tsujikawa aria2eq0.3.1+2

CPE	Name	Operator	Version
tatsuhiro_tsujikawa:aria2	tatsuhiro tsujikawa aria2	le	1.9.2
tatsuhiro_tsujikawa:aria2	tatsuhiro tsujikawa aria2	eq	0.1.0
tatsuhiro_tsujikawa:aria2	tatsuhiro tsujikawa aria2	eq	0.2.0
tatsuhiro_tsujikawa:aria2	tatsuhiro tsujikawa aria2	eq	0.2.1
tatsuhiro_tsujikawa:aria2	tatsuhiro tsujikawa aria2	eq	0.2.1+1
tatsuhiro_tsujikawa:aria2	tatsuhiro tsujikawa aria2	eq	0.2.1+2
tatsuhiro_tsujikawa:aria2	tatsuhiro tsujikawa aria2	eq	0.3.0
tatsuhiro_tsujikawa:aria2	tatsuhiro tsujikawa aria2	eq	0.3.1
tatsuhiro_tsujikawa:aria2	tatsuhiro tsujikawa aria2	eq	0.3.1+1
tatsuhiro_tsujikawa:aria2	tatsuhiro tsujikawa aria2	eq	0.3.1+2