CVE-2017-6508 log
Source |
|
Severity | Medium |
Remote | Yes |
Type | Content spoofing |
Description | A CRLF injection flaw was found in the way wget < 1.19.2 handled URLs. A remote attacker could use this flaw to inject arbitrary HTTP headers in requests, via CRLF sequences in the host sub-component of a URL, by tricking a user running wget into processing crafted URLs. |
Group | Package | Affected | Fixed | Severity | Status | Ticket |
---|---|---|---|---|---|---|
AVG-473 | wget | 1.19.1-2 | 1.19.2-1 | Critical | Fixed |
Date | Advisory | Group | Package | Severity | Type |
---|---|---|---|---|---|
29 Oct 2017 | ASA-201710-34 | AVG-473 | wget | Critical | multiple issues |