Unrated severityNVD Advisory· Published Oct 28, 2010· Updated Jun 16, 2026
CVE-2010-3842
CVE-2010-3842
Description
Absolute path traversal vulnerability in curl 7.20.0 through 7.21.1, when the --remote-header-name or -J option is used, allows remote servers to create or overwrite arbitrary files by using \ (backslash) as a separator of path components within the Content-disposition HTTP header.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4Patches
Vulnerability mechanics
References
7- www.openwall.com/lists/oss-security/2010/10/13/4nvdPatch
- curl.haxx.se/docs/adv_20101013.htmlnvdVendor Advisory
- secunia.com/advisories/39532nvdVendor Advisory
- securitytracker.com/idnvd
- www.openwall.com/lists/oss-security/2010/10/13/1nvd
- www.openwall.com/lists/oss-security/2010/10/13/5nvd
- bugzilla.redhat.com/show_bug.cginvd
News mentions
0No linked articles in our index yet.