Denial of Service Vulnerability in GNU Wget by Free Software Foundation
CVE-2006-6719

Currently unrated

Key Information:

Vendor: Gnu
Status: Wget
Vendor: CVE Published:; 23 December 2006

What is CVE-2006-6719?

The ftp_syst function in version 1.10.2 of GNU Wget is vulnerable to a Denial of Service attack. If exploited by a malicious FTP server, this vulnerability can cause the application to crash when it receives a large number of empty 220 responses to the SYST command. This poses a risk to users relying on this utility for secure file transfers, leading to potential service disruptions.

References

https://issues.rpath.com/browse/RPL-930

x_refsource_CONFIRM

http://www.securityfocus.com/bid/21650

vdb-entryx_refsource_BID

https://www.exploit-db.com/exploits/2947

exploitx_refsource_EXPLOIT-DB

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 23, 2006
Vulnerability Reserved
Dec 22, 2006

Gnu

What is CVE-2006-6719?

References

Timeline