oval:org.mitre.oval:def:11620

Definition Id: oval:org.mitre.oval:def:11620
 
Oval ID: oval:org.mitre.oval:def:11620
Title: DSA-2047 aria2 -- insufficient input sanitising
Description: A vulnerability was discovered in aria2, a download client. The "name" attribute of the "file" element of metalink files is not properly sanitised before using it to download files. If a user is tricked into downloading from a specially crafted metalink file, this can be exploited to download files to directories outside of the intended download directory.
Family: unix Class: patch
Reference(s): DSA-2047
CVE-2010-1512
Version: 5
Platform(s): Debian GNU/Linux 5.0
Product(s): aria2
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:6513
 
Oval ID: oval:org.mitre.oval:def:6513
Title: Debian GNU/Linux 5.0 is installed
Description: Debian GNU/Linux 5.0 (lenny) is installed
Family: unix Class: inventory
Reference(s): cpe:/o:debian:debian_gnu/linux:5.0
Version: 7
Platform(s): Debian GNU/Linux 5.0
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:11620