GNU wget before 1.18 allows remote servers to write to arbitrary files by redirecting a request from HTTP to a crafted FTP resource.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
12 Feb 2023, 23:22
Type | Values Removed | Values Added |
---|---|---|
Summary | GNU wget before 1.18 allows remote servers to write to arbitrary files by redirecting a request from HTTP to a crafted FTP resource. | |
References |
|
02 Feb 2023, 21:16
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | It was found that wget used a file name provided by the server for the downloaded file when following a HTTP redirect to a FTP server resource. This could cause wget to create a file with a different name than expected, possibly allowing the server to execute arbitrary code on the client. |
05 May 2021, 14:43
Type | Values Removed | Values Added |
---|---|---|
References | (CONFIRM) http://git.savannah.gnu.org/cgit/wget.git/commit/?id=e996e322ffd42aaa051602da182d03178d0f13e1 - Patch, Vendor Advisory | |
References | (REDHAT) http://rhn.redhat.com/errata/RHSA-2016-2587.html - Broken Link | |
References | (CONFIRM) https://security.paloaltonetworks.com/CVE-2016-4971 - Third Party Advisory | |
References | (UBUNTU) http://www.ubuntu.com/usn/USN-3012-1 - Third Party Advisory | |
References | (SUSE) http://lists.opensuse.org/opensuse-updates/2016-08/msg00043.html - Broken Link | |
References | (MISC) http://packetstormsecurity.com/files/162395/GNU-wget-Arbitrary-File-Upload-Code-Execution.html - Exploit, Third Party Advisory, VDB Entry | |
References | (GENTOO) https://security.gentoo.org/glsa/201610-11 - Third Party Advisory | |
References | (BID) http://www.securityfocus.com/bid/91530 - Third Party Advisory, VDB Entry | |
References | (CONFIRM) http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html - Third Party Advisory | |
References | (SECTRACK) http://www.securitytracker.com/id/1036133 - Third Party Advisory, VDB Entry | |
References | (MLIST) http://lists.gnu.org/archive/html/info-gnu/2016-06/msg00004.html - Mailing List, Patch, Vendor Advisory | |
References | (EXPLOIT-DB) https://www.exploit-db.com/exploits/40064/ - Exploit, Third Party Advisory, VDB Entry | |
References | (CONFIRM) https://bugzilla.redhat.com/show_bug.cgi?id=1343666 - Exploit, Issue Tracking, Patch, Third Party Advisory | |
CPE | cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:* cpe:2.3:a:gnu_wget_project:gnu_wget:*:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:* |
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:* cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:* cpe:2.3:o:oracle:solaris:10:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:* cpe:2.3:a:gnu:wget:*:*:*:*:*:*:*:* cpe:2.3:o:paloaltonetworks:pan-os:*:*:*:*:*:*:*:* |
CWE | NVD-CWE-noinfo |
30 Apr 2021, 17:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2016-06-30 17:59
Updated : 2023-12-10 11:46
NVD link : CVE-2016-4971
Mitre link : CVE-2016-4971
CVE.ORG link : CVE-2016-4971
JSON object : View
Products Affected
gnu
- wget
paloaltonetworks
- pan-os
canonical
- ubuntu_linux
oracle
- solaris
CWE