CVE-2002-1344
published 2002-12-18CVE-2002-1344: Directory traversal vulnerability in wget before 1.8.2-4 allows a remote FTP server to create or overwrite files as the wget user via filenames containing (1)…
medium5CVSS 3.1
AVNACLAuNCNIPAN
Directory traversal vulnerability in wget before 1.8.2-4 allows a remote FTP server to create or overwrite files as the wget user via filenames containing (1) /absolute/path or (2) .. (dot dot) sequences.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | wget | < wget 1.8.2-8 (bookworm) | wget 1.8.2-8 (bookworm) |
| gnu | wget | — | — |
| gnu | wget | — | — |
| gnu | wget | — | — |
| gnu | wget | — | — |
| gnu | wget | — | — |
| gnu | wget | — | — |
| gnu | wget | — | — |
| gnu | wget | >= 0 < 1.8.2-8 | 1.8.2-8 |
| gnu | wget | >= 0 < 1.8.2-8 | 1.8.2-8 |
| gnu | wget | >= 0 < 1.8.2-8 | 1.8.2-8 |
| gnu | wget | >= 0 < 1.8.2-8 | 1.8.2-8 |
CVSS provenance
nvd5.0MEDIUMAV:N/AC:L/Au:N/C:N/I:P/A:N
osv5.0MEDIUM