CVE 2010-1512
Directory traversal vulnerability in aria2 before 1.9.3 allows remote attackers to create arbitrary files via directory traversal sequences in the name attribute of a file element in a metalink file.
See the 
CVE page on Mitre.org
for more details.
