CVE-2017-6508 log
| Source |
|
| Severity | Medium |
| Remote | Yes |
| Type | Content spoofing |
| Description | A CRLF injection flaw was found in the way wget < 1.19.2 handled URLs. A remote attacker could use this flaw to inject arbitrary HTTP headers in requests, via CRLF sequences in the host sub-component of a URL, by tricking a user running wget into processing crafted URLs. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-473 | wget | 1.19.1-2 | 1.19.2-1 | Critical | Fixed |
| Date | Advisory | Group | Package | Severity | Type |
|---|---|---|---|---|---|
| 29 Oct 2017 | ASA-201710-34 | AVG-473 | wget | Critical | multiple issues |