PublicDate: 2005-04-27 04:00:00 UTC
Candidate: CVE-2004-1487
References:
 https://ubuntu.com/security/notices/USN-145-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1487
Description:
 wget 1.8.x and 1.9.x allows a remote malicious web server to overwrite
 certain files via a redirection URL containing a ".." that resolves to the
 IP address of the malicious server, which bypasses wget's filtering for
 ".." sequences.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_wget: released (1.10.2-1ubuntu1)
edgy_wget: released (1.10.2-1ubuntu1)
feisty_wget: released (1.10.2-1ubuntu1)
devel_wget: released (1.10.2-1ubuntu1)
upstream_wget: needs-triage