Back to search
CVE-2010-2251
Published: Jul 6, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
The get1 command, as used by lftpget, in LFTP before 4.0.6 does not properly validate a server-provided filename before determining the destination filename of a download, which allows remote servers to create or overwrite arbitrary files via a Content-Disposition header that suggests a crafted filename, and possibly execute arbitrary code as a consequence of writing to a dotfile in a home directory.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20100517 [oCERT-2010-001] multiple http client unexpected download filename vulnerability
mailing-list
x_refsource_MLIST
http://wiki.rpath.com/Advisories:rPSA-2010-0073
x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=602836
x_refsource_CONFIRM
ADV-2010-1654
vdb-entry
x_refsource_VUPEN
[oss-security] 20100609 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability
mailing-list
x_refsource_MLIST
FEDORA-2010-9819
vendor-advisory
x_refsource_FEDORA
http://www.ocert.org/advisories/ocert-2010-001.html
x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=591580
x_refsource_CONFIRM
SUSE-SR:2010:014
vendor-advisory
x_refsource_SUSE
40400
third-party-advisory
x_refsource_SECUNIA
DSA-2085
vendor-advisory
x_refsource_DEBIAN
20101027 rPSA-2010-0073-1 lftp
mailing-list
x_refsource_BUGTRAQ
http://lftp.yar.ru/news.html
x_refsource_CONFIRM
[oss-security] 20100520 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability
mailing-list
x_refsource_MLIST
[oss-security] 20100610 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now