CVE-2004-1488

Currently unrated

Key Information:

Vendor: Gnu
Status: Wget
Vendor: CVE Published:; 27 April 2005

Summary

wget 1.8.x and 1.9.x does not filter or quote control characters when displaying HTTP responses to the terminal, which may allow remote malicious web servers to inject terminal escape sequences and execute arbitrary code.

References

http://www.redhat.com/support/errata/RHSA-2005-771.html

vendor-advisoryx_refsource_REDHAT

http://www.securityfocus.com/bid/11871

vdb-entryx_refsource_BID

http://marc.info/?l=bugtraq&m=110269474112384&w=2

mailing-listx_refsource_BUGTRAQ

EPSS Score

1% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 27, 2005
Vulnerability Reserved
Feb 15, 2005