CVE-2010-2252 (retired)

Priority
Description
GNU Wget 1.12 and earlier uses a server-provided filename instead of the
original URL to determine the destination filename of a download, which
allows remote servers to create or overwrite arbitrary files via a 3xx
redirect to a URL with a .wgetrc filename followed by a 3xx redirect to a
URL with a crafted filename, and possibly execute arbitrary code as a
consequence of writing to a dotfile in a home directory.
Notes
Package
Source: wget (LP Ubuntu Debian)
Upstream:needs-triage
Patches:
Upstream:http://lists.gnu.org/archive/html/bug-wget/2010-07/msg00076.html
Upstream:r2409
More Information

Updated: 2019-10-09 07:32:06 UTC (commit 33aea848a182c0afcd0a3f927a01a7ecd9a061ee)