CVE-2010-2253
Published: 6 July 2010
lwp-download in libwww-perl before 5.835 does not reject downloads to filenames that begin with a . (dot) character, which allows remote servers to create or overwrite files via (1) a 3xx redirect to a URL with a crafted filename or (2) a Content-Disposition header that suggests a crafted filename, and possibly execute arbitrary code as a consequence of writing to a dotfile in a home directory.
Priority
Status
Package | Release | Status |
---|---|---|
libwww-perl Launchpad, Ubuntu, Debian |
dapper |
Released
(5.803-4ubuntu0.1)
|
hardy |
Released
(5.808-1ubuntu0.1)
|
|
jaunty |
Released
(5.820-1ubuntu0.1)
|
|
karmic |
Released
(5.831-1ubuntu0.1)
|
|
lucid |
Released
(5.834-1ubuntu0.1)
|
|
upstream |
Released
(5.835)
|
|
Patches: upstream: http://github.com/gisle/libwww-perl/commit/f97f339f552666ef79cdd2cf2a44032cf206bb6e |