CVE-2014-4877 (retired)

Priority
Description
Absolute path traversal vulnerability in GNU Wget before 1.16, when
recursion is enabled, allows remote FTP servers to write to arbitrary
files, and consequently execute arbitrary code, via a LIST response that
references the same filename within two entries, one of which indicates
that the filename is for a symlink.
Assigned-to
mdeslaur
Notes
More Information

Updated: 2019-10-09 07:50:47 UTC (commit 33aea848a182c0afcd0a3f927a01a7ecd9a061ee)