CVE-2004-1488

Publication date 27 April 2005

Last updated 24 July 2024


Ubuntu priority

wget 1.8.x and 1.9.x does not filter or quote control characters when displaying HTTP responses to the terminal, which may allow remote malicious web servers to inject terminal escape sequences and execute arbitrary code.

Status

Package Ubuntu Release Status
wget 7.04 feisty
Fixed 1.10.2-1ubuntu1
6.10 edgy
Fixed 1.10.2-1ubuntu1
6.06 LTS dapper
Fixed 1.10.2-1ubuntu1

References

Related Ubuntu Security Notices (USN)

    • USN-145-1
    • wget vulnerabilities
    • 28 June 2005

Other references