8 matches found
SUSE CVE-2004-1487
wget 1.8.x and 1.9.x allows a remote malicious web server to overwrite certain files via a redirection URL containing a ".." that resolves to the IP address of the malicious server, which bypasses wget's filtering for ".." sequences...
SLES9: Security update for wget
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: wget For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5017044 within the SuSE...
SLES9: Security update for wget
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: wget For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5017044 within the SuSE...
FreeBSD Ports: wget, wget-devel
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
RHEL 4 : wget (RHSA-2005:771)
The remote Redhat Enterprise Linux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2005:771 advisory. GNU Wget is a file retrieval utility that can use either the HTTP or FTP protocols. A bug was found in the way wget writes files to the local...
CVE-2004-1487
CVE-2004-1487 affects wget 1.8.x and 1.9.x, where a remote server can cause overwriting of local files via a redirect URL containing ".." that resolves to the attacker’s IP, bypassing wget’s ".." filtering. Connected docs confirm this as a vulnerability in redirection URL handling and indicate up...
CVE-2004-1487
wget 1.8.x and 1.9.x allows a remote malicious web server to overwrite certain files via a redirection URL containing a ".." that resolves to the IP address of the malicious server, which bypasses wget's filtering for ".." sequences...
CVE-2004-1487
wget 1.8.x and 1.9.x allows a remote malicious web server to overwrite certain files via a redirection URL containing a ".." that resolves to the IP address of the malicious server, which bypasses wget's filtering for ".." sequences...