libcurl.so is vulnerable to arbitrary file overwrite. A logic flaw occurs when the -J
flag is used together with -i
option and are used in the reversed order. A malicious server will be able to overwrite arbitrary local files where the curl was executed by responding with malicious HTTP headers.