wget vulnerabilities

10 Dec 2004

A Post on Bugtraq identifies a lot of issues with wget. Comes down to dodgy webservers can overwrite any file that the user running wget can write to. He also provided a proof of concept.

So far no fixes have been created and if the author of the advisory is correct about the state of wget's source I wouldn't hold my breath.

Posted by R.I.Pienaar on Friday, December 10, 2004 at 4:50 PM

Filed in

Leave a comment

Recent Entries

  • flashpolicyd 2.0

    I wrote a multi threaded server for Adobe Flash Policy requests, some background from Adobe:Since policy files were first introduced, Flash Player has recognized /crossdomain.xml...

  • Adventures with Ruby

    Some more about my continuing experiences with ruby, in my last post I saidthe language does what you'd expect and as you'll see in my...

  • New programming language of choice - Ruby

    I have fallen out of love with Perl some time ago, I cannot point to one specific thing about it that put me off, I...

  • On working from home

    I've not been posting much here, work has been incredibly manic the last while, especially I need to still finish off my SSO posts with...

  • Rework of puppet facts for /etc/facts.txt

    Previously I blogged a custom fact that reads /etc/facts.txt to build up some custom facts for use in Puppet manifests, well I've since learned a...

Close