Lucene search
RedHatRHSA-2003:372HistoryDec 10, 2003 - 12:00 a.m.
(RHSA-2003:372) wget security update
2003-12-1000:00:00
access.redhat.com
14
0.008 Low
EPSS
Percentile
81.9%
GNU Wget is a file-retrieval utility that uses the HTTP and FTP protocols.
A buffer overflow in the url_filename function for wget 1.8.1 allows
attackers to cause a segmentation fault via a long URL. Red Hat does not
believe that this issue is exploitable to allow an attacker to be able to
run arbitrary code. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2002-1565 to this issue.
Users of wget should install the erratum package, which contains a
backported security patch and is not vulnerable to this issue.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | any | i386 | wget | < 1.8.2-14.72 | wget-1.8.2-14.72.i386.rpm |
| RedHat | any | ia64 | wget | < 1.8.2-14.72 | wget-1.8.2-14.72.ia64.rpm |
Related
cvelist
cvelist
CVE-2002-1565
2003-06-05 04:00:00
nessus
nessus
RHEL 2.1 : wget (RHSA-2003:372)
2004-07-06 00:00:00
Debian DSA-209-1 : wget - directory traversal
2004-09-29 00:00:00
nvd
nvd
CVE-2002-1565
2003-06-16 04:00:00
CVE-2003-1565
2003-08-27 04:00:00
debiancve
debiancve
CVE-2002-1565
2003-06-16 04:00:00
cve
cve
CVE-2002-1565
2003-06-16 04:00:00
CVE-2003-1565
2003-08-27 04:00:00
securityvulns
securityvulns
[CLA-2003:716] Conectiva Security Announcement - wget
2003-08-05 00:00:00