CVE-2004-1488 - CVE Reference - Advisories

CVE Reference: CVE-2004-1488

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2004-1488

Description: wget 1.8.x and 1.9.x does not filter or quote control characters when displaying HTTP responses to the terminal, which may allow remote malicious web servers to inject terminal escape sequences and execute arbitrary code.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/18421 UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-145-1 SUSE http://www.novell.com/linux/security/advisories/2006_16_sr.html ST 1012472 SAID Secunia Advisory: SA20960 REDHAT http://www.redhat.com/support/errata/RHSA-2005-771.html MISC http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=261755 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=110269474112384&w=2 BID 11871

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Linux Kernel LDT Buffer Size Handling Vulnerability

2.	OpenBSD BIND Query Port DNS Cache Poisoning

3.	Red Hat update for thunderbird

4.	Drupal Session Fixation Vulnerability

5.	Apple Safari Cross-Domain Cookie Injection Vulnerability

6.	IPCop update for perl

7.	Slackware update for dnsmasq

8.	Red Hat update for kernel

9.	Debian update for iceweasel

10.	Debian update for xulrunner