PT-2010-2722 · None · Free Download Manager

Published

2010-05-17

Updated

2018-10-10

CVE-2010-0999

CVSS v2.0

7.1

High

Vector

AV:N/AC:M/Au:N/C:N/I:C/A:N

Name of the Vulnerable Software and Affected Versions Free Download Manager versions prior to 3.0.852

Description A directory traversal issue allows remote attackers to create arbitrary files by using directory traversal sequences in the name attribute of a file element in a metalink file.

Recommendations For versions prior to 3.0.852, update to version 3.0.852 or later to resolve the issue.

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2010-0999

Affected Products

Free Download Manager

PT-2010-2722 · None · Free Download Manager

CVE-2010-0999

Weakness Enumeration

Related Identifiers

Affected Products

References · 7