CVE-2010-0999 Information

Description

Directory traversal vulnerability in Free Download Manager (FDM) before 3.0.852 allows remote attackers to create arbitrary files via directory traversal sequences in the name attribute of a file element in a metalink file.

Reference

http://osvdb.org/64670 http://secunia.com/secunia_research/2010-67/ http://www.securityfocus.com/archive/1/511284/100/0/threaded http://www.securityfocus.com/bid/40152 https://exchange.xforce.ibmcloud.com/vulnerabilities/58627 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A7284