CVE-2010-3842 — Path Traversal in Curl

CWE-22 — Path Traversal4 documents4 sources

Severity

5.8MEDIUMNVD

EPSS

0.9%

top 24.32%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Curl Debian Curl

Timeline

PublishedOct 28

Latest updateMay 17

Description

Absolute path traversal vulnerability in curl 7.20.0 through 7.21.1, when the --remote-header-name or -J option is used, allows remote servers to create or overwrite arbitrary files by using \ (backslash) as a separator of path components within the Content-disposition HTTP header.

CVSS vector

AV:N/AC:M/C:N/I:P/A:PExploitability: 8.6 | Impact: 4.9

Affected Packages2 packages

▶NVDcurl/curl7.20.0, 7.20.1, 7.21.1+2

▶debiandebian/curl

Patches

Patch: www.openwall.com ↗Patch: www.openwall.com ↗

🔴Vulnerability Details

GHSA

GHSA-fwfv-5xmw-xx69: Absolute path traversal vulnerability in curl 7↗2022-05-17

▶

📋Vendor Advisories

Debian

CVE-2010-3842: curl - Absolute path traversal vulnerability in curl 7.20.0 through 7.21.1, when the --...↗2010

▶

💬Community

Bugzilla

CVE-2010-3842 mingw32-curl: Did not strip directory parts separated by backslashes, when downloading files↗2010-10-13

▶