File Overwriting Vulnerability in GNU Wget by Free Software Foundation
CVE-2010-2252

Currently unrated

Key Information:

Vendor: Gnu
Status: Wget
Vendor: CVE Published:; 6 July 2010

Summary

GNU Wget versions 1.12 and earlier are susceptible to a file overwriting vulnerability that arises when the software uses a server-provided filename from a 3xx redirect to determine the destination filename for downloads. This behavior can be exploited by remote attackers, enabling them to create or overwrite arbitrary files. An attacker could leverage this vulnerability through a specially crafted URL to redirect to a .wgetrc filename, potentially executing arbitrary code by modifying files in the user's home directory. It underscores the necessity for strict URL validation and user awareness when downloading files from untrusted sources.

References

http://marc.info/?l=oss-security&m=127411372529485&w=2

mailing-listx_refsource_MLIST

https://bugzilla.redhat.com/show_bug.cgi?id=602797

x_refsource_CONFIRM

http://lists.gnu.org/archive/html/bug-wget/2010-05/msg000...

mailing-listx_refsource_MLIST

Timeline

Vulnerability published
Jul 6, 2010
Vulnerability Reserved
Jun 9, 2010