5
CVE-2004-1488
- EPSS 11.92%
- Veröffentlicht 27.04.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:07:48
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
wget 1.8.x and 1.9.x does not filter or quote control characters when displaying HTTP responses to the terminal, which may allow remote malicious web servers to inject terminal escape sequences and execute arbitrary code.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 11.92% | 0.956 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
http://www.redhat.com/support/errata/RHSA-2005-771.html
https://usn.ubuntu.com/145-1/
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=261755
http://marc.info/?l=bugtraq&m=110269474112384&w=2
http://securitytracker.com/id?1012472
http://www.securityfocus.com/bid/11871
http://secunia.com/advisories/20960
http://www.novell.com/linux/security/advisories/2006_16_sr.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/18421
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9750