CVE Vulnerabilities

CVE-2004-1488

Published: Apr 27, 2005 | Modified: Oct 03, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED

wget 1.8.x and 1.9.x does not filter or quote control characters when displaying HTTP responses to the terminal, which may allow remote malicious web servers to inject terminal escape sequences and execute arbitrary code.

Affected Software

Name Vendor Start Version End Version
Wget Gnu 1.8 (including) 1.8 (including)
Wget Gnu 1.8.1 (including) 1.8.1 (including)
Wget Gnu 1.8.2 (including) 1.8.2 (including)
Wget Gnu 1.9 (including) 1.9 (including)
Wget Gnu 1.9.1 (including) 1.9.1 (including)
Red Hat Enterprise Linux 3 RedHat wget-0:1.10.1-1.30E.1 *
Red Hat Enterprise Linux 4 RedHat wget-0:1.10.1-2.4E.1 *
Wget Ubuntu dapper *
Wget Ubuntu devel *
Wget Ubuntu edgy *
Wget Ubuntu feisty *

References