CVE-2004-1487
Publication date 27 April 2005
Last updated 24 July 2024
Ubuntu priority
wget 1.8.x and 1.9.x allows a remote malicious web server to overwrite certain files via a redirection URL containing a ”..” that resolves to the IP address of the malicious server, which bypasses wget’s filtering for ”..” sequences.
Status
Package | Ubuntu Release | Status |
---|---|---|
wget | 7.04 feisty |
Fixed 1.10.2-1ubuntu1
|
6.10 edgy |
Fixed 1.10.2-1ubuntu1
|
|
6.06 LTS dapper |
Fixed 1.10.2-1ubuntu1
|