39 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-0494
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNU Wget before 1.19.5 is prone to a cookie injection vulnerability in the respnew function in http.c via a \r\n sequence in a continuation line. CVE-2018-0494...
Security Bulletin: A vulnerability with GNU Wget affects IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data (CVE-2018-0494)
Summary A vulnerability with GNU Wget affects IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data CVE-2018-0494. Please see the details below on how to remediate this issue. Vulnerability Details CVEID:CVE-2018-0494 DESCRIPTION: GNU Wget could allow a remote attacker to bypass securit...
Mageia: Security Advisory (MGASA-2018-0244)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2018:1367-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for wget (EulerOS-SA-2019-1165)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for wget (EulerOS-SA-2019-1413)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for wget (EulerOS-SA-2018-1316)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for wget (EulerOS-SA-2018-1315)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
NewStart CGSL CORE 5.04 / MAIN 5.04 : wget Vulnerability (NS-SA-2019-0065)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has wget packages installed that are affected by a vulnerability: - A cookie injection flaw was found in wget. An attacker can create a malicious website which, when accessed, overrides cookies belonging to arbitrary domains...
EulerOS Virtualization for ARM 64 3.0.1.0 : wget (EulerOS-SA-2019-1413)
According to the versions of the wget package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - A cookie injection flaw was found in wget. An attacker can create a malicious website which, when accessed, overrides...
EulerOS Virtualization 2.5.2 : wget (EulerOS-SA-2019-1085)
According to the version of the wget package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - GNU Wget before 1.19.5 is prone to a cookie injection vulnerability in the respnew function in http.c via a \r\n sequence in a...
Amazon Linux 2 : wget (ALAS-2018-1121)
A cookie injection flaw was found in wget. An attacker can create a malicious website which, when accessed, overrides cookies belonging to arbitrary domains.CVE-2018-0494 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon Linux 2...
Medium: wget
Issue Overview: A cookie injection flaw was found in wget. An attacker can create a malicious website which, when accessed, overrides cookies belonging to arbitrary domains.CVE-2018-0494 Affected Packages: wget Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FA...
Scientific Linux Security Update : wget on SL7.x x86_64 (20181030)
Security Fixes : - wget: Cookie injection allows malicious website to write arbitrary cookie entries into cookie jar CVE-2018-0494 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid119201; scriptversion"1.5";...
CentOS 7 : wget (CESA-2018:3052)
An update for wget is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...
Oracle Linux 7 : wget (ELSA-2018-3052)
The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2018-3052 advisory. - Fix CVE-2018-0494 1576106 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...
wget security and bug fix update
1.14-18 - Fix CVE-2018-0494 1576106 1.14-17 - Fix segfault when Digest Authentication header is missing 'qop' part 1545310 1.14-16 - Fixed various security flaws CVE-2017-13089, CVE-2017-13090...
RHEL 7 : wget (RHSA-2018:3052)
The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2018:3052 advisory. The wget packages provide the GNU Wget file retrieval utility for HTTP, HTTPS, and FTP protocols. Security Fixes: wget: Cookie injection allows...
EulerOS Virtualization 2.5.1 : wget (EulerOS-SA-2018-1342)
According to the version of the wget package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - A cookie injection flaw was found in wget. An attacker can create a malicious website which, when accessed, overrides cookies belonging...
EulerOS Virtualization 2.5.0 : wget (EulerOS-SA-2018-1348)
According to the version of the wget package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - A cookie injection flaw was found in wget. An attacker can create a malicious website which, when accessed, overrides cookies belonging...