Tatsuhiro Tsujikawa Aria2 vulnerabilities

CVE-2010-1512 [MEDIUM] CWE-22 CVE-2010-1512: Directory traversal vulnerability in aria2 before 1.9.3 allows remote attackers to create arbitrary Directory traversal vulnerability in aria2 before 1.9.3 allows remote attackers to create arbitrary files via directory traversal sequences in the name attribute of a file element in a metalink file.

CVE-2009-3617 [HIGH] CWE-134 CVE-2009-3617: Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in ar Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in aria2 before 1.6.2, when logging is enabled, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via format string specifiers in a download URI. NOTE: some of these details are obtained from third party informa

CVE-2009-3575 [CRITICAL] CVE-2009-3575: Buffer overflow in DHTRoutingTableDeserializer.cc in aria2 0.15.3, 1.2.0, and other versions allows Buffer overflow in DHTRoutingTableDeserializer.cc in aria2 0.15.3, 1.2.0, and other versions allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors.