MidnightBSD

Advisories for orbitdownloader

CVE-2010-2104 MEDIUM

Directory traversal vulnerability in Orbit Downloader 3.0.0.4 and 3.0.0.5 allows user-assisted remote attackers to write arbitrary files via a metalink file containing directory traversal sequences in the name attribute of a file element.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
orbitdownloader orbit_downloader 3.0.0.5
orbitdownloader orbit_downloader 3.0.0.4