Lucene search
+L

118 matches found

Prion
Prion
added 2010/05/17 9:0 p.m.10 views

Directory traversal

Directory traversal vulnerability in aria2 before 1.9.3 allows remote attackers to create arbitrary files via directory traversal sequences in the name attribute of a file element in a metalink file...

4.3CVSS7AI score0.03159EPSS
Exploits0References19Affected Software1
UbuntuCve
UbuntuCve
added 2010/05/17 9:0 p.m.14 views

CVE-2010-1512

Directory traversal vulnerability in aria2 before 1.9.3 allows remote attackers to create arbitrary files via directory traversal sequences in the name attribute of a file element in a metalink file...

4.3CVSS6AI score0.03159EPSS
Exploits0References1
CVE
CVE
added 2010/05/17 8:42 p.m.62 views

CVE-2010-1512

aria2 contains a directory traversal flaw (CVE-2010-1512) that can be triggered via a metalink file’s name attribute to create arbitrary files. Affected versions are before 1.9.3; the issue is fixed in aria2-1.9.3. Open advisories (Gentoo GLSA, openSUSE/SUSE, Fedora) document the vulnerability an...

4.3CVSS6.5AI score0.03159EPSS
Exploits0References19Affected Software1
Cvelist
Cvelist
added 2010/05/17 8:42 p.m.32 views

CVE-2010-1512

Directory traversal vulnerability in aria2 before 1.9.3 allows remote attackers to create arbitrary files via directory traversal sequences in the name attribute of a file element in a metalink file...

6.4AI score0.03159EPSS
Exploits0References19
Debian
Debian
added 2010/05/17 6:28 p.m.54 views

[SECURITY] [DSA 2047-1] New aria2 packages fix directory traversal

------------------------------------------------------------------------ Debian Security Advisory DSA-2047-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst May 17, 2010 http://www.debian.org/security/faq -...

4.3CVSS5.8AI score0.03159EPSS
Exploits0
securityvulns
securityvulns
added 2010/05/17 12:0 a.m.33 views

aria2 directory traversal

Directory traversal via metalink files...

4.3CVSS4.8AI score0.03159EPSS
Exploits0References1
OSV
OSV
added 2010/05/17 12:0 a.m.16 views

DSA-2047-1 aria2 - directory traversal

Bulletin has no description...

4.3CVSS6AI score0.03159EPSS
Exploits0
securityvulns
securityvulns
added 2010/05/17 12:0 a.m.36 views

Secunia Research: aria2 metalink "name" Directory Traversal Vulnerability

====================================================================== Secunia Research 13/05/2010 - aria2 metalink "name" Directory Traversal Vulnerability - ====================================================================== Table of Contents Affected...

4.3CVSS0.7AI score0.03159EPSS
Exploits0
OpenVAS
OpenVAS
added 2010/03/02 12:0 a.m.12 views

Mandriva Update for aria2 MDVA-2010:077 (aria2)

Check for the Version of aria2 OpenVAS Vulnerability Test Mandriva Update for aria2 MDVA-2010:077 aria2 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

0.3AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2010/02/25 12:0 a.m.26 views

GLSA-201001-06 : aria2: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201001-06 aria2: Multiple vulnerabilities Tatsuhiro Tsujikawa reported a buffer overflow in DHTRoutingTableDeserializer.cc CVE-2009-3575 and a format string vulnerability in the AbstractCommand::onAbort function in...

10CVSS6.2AI score0.05784EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2010/02/24 12:0 a.m.61 views

Debian DSA-1957-1 : aria2 - buffer overflow

It was discovered that aria2, a high speed download utility, is prone to a buffer overflow in the DHT routing code, which might lead to the execution of arbitrary code. The oldstable distribution etch is not affected by this problem. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

10CVSS5.9AI score0.05784EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2010/01/20 12:0 a.m.18 views

Gentoo Security Advisory GLSA 201001-06 (aria2)

The remote host is missing updates announced in advisory GLSA 201001-06. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

10CVSS1.1AI score0.05784EPSS
Exploits1
OpenVAS
OpenVAS
added 2010/01/20 12:0 a.m.16 views

Gentoo Security Advisory GLSA 201001-06 (aria2)

The remote host is missing updates announced in advisory GLSA 201001-06. SPDX-FileCopyrightText: 2010 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

10CVSS6.5AI score0.05784EPSS
Exploits0References2
Gentoo Linux
Gentoo Linux
added 2010/01/13 12:0 a.m.30 views

aria2: Multiple vulnerabilities

Background aria2 is a download utility with resuming and segmented downloading with HTTP/HTTPS/FTP/BitTorrent support. Description Tatsuhiro Tsujikawa reported a buffer overflow in DHTRoutingTableDeserializer.cc CVE-2009-3575 and a format string vulnerability in the AbstractCommand::onAbort...

10CVSS7.8AI score0.05784EPSS
Exploits1
OpenVAS
OpenVAS
added 2009/12/30 12:0 a.m.18 views

Debian: Security Advisory (DSA-1957-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.5AI score0.05784EPSS
Exploits0References3
Debian
Debian
added 2009/12/28 9:58 a.m.17 views

[SECURITY] [DSA 1957-1] New aria2 packages fix arbitrary code execution

------------------------------------------------------------------------ Debian Security Advisory DSA-1957-1 [email protected] http://www.debian.org/security/ Steffen Joeris December 28, 2009 http://www.debian.org/security/faq -...

10CVSS6.6AI score0.05784EPSS
Exploits0
OSV
OSV
added 2009/12/28 12:0 a.m.15 views

DSA-1957-1 aria2 - arbitrary code execution

Bulletin has no description...

10CVSS6AI score0.05784EPSS
Exploits0
NVD
NVD
added 2009/10/20 5:30 p.m.20 views

CVE-2009-3617

Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in aria2 before 1.6.2, when logging is enabled, allows remote attackers to execute arbitrary code or cause a denial of service application crash via format string specifiers in a download URI. NOTE: som...

7.6CVSS7.7AI score0.04892EPSS
Exploits1References9
OSV
OSV
added 2009/10/20 5:30 p.m.7 views

CVE-2009-3617

Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in aria2 before 1.6.2, when logging is enabled, allows remote attackers to execute arbitrary code or cause a denial of service application crash via format string specifiers in a download URI. NOTE: som...

7.6AI score
Exploits0References9
OSV
OSV
added 2009/10/20 5:30 p.m.3 views

DEBIAN-CVE-2009-3617

Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in aria2 before 1.6.2, when logging is enabled, allows remote attackers to execute arbitrary code or cause a denial of service application crash via format string specifiers in a download URI. NOTE: som...

7.6CVSS8AI score0.04892EPSS
Exploits1References1
Rows per page
Query Builder