It was discovered that libwww-perl incorrectly filtered filenames suggested
by Content-Disposition headers. If a user were tricked into downloading a
file from a malicious site, a remote attacker could overwrite hidden files
in the user’s directory.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 9.10 | noarch | libwww-perl | <Â 5.831-1ubuntu0.1 | UNKNOWN |
Ubuntu | 9.04 | noarch | libwww-perl | <Â 5.820-1ubuntu0.1 | UNKNOWN |
Ubuntu | 8.04 | noarch | libwww-perl | <Â 5.808-1ubuntu0.1 | UNKNOWN |
Ubuntu | 6.06 | noarch | libwww-perl | <Â 5.803-4ubuntu0.1 | UNKNOWN |
Ubuntu | 10.04 | noarch | libwww-perl | <Â 5.834-1ubuntu0.1 | UNKNOWN |