|
|
WGet Insecure File Creation Race Condition Vulnerability
|
Bugtraq ID:
|
10361
|
|
Class:
|
Race Condition Error
|
|
CVE:
|
CVE-2004-2014
|
|
Remote:
|
No
|
|
Local:
|
Yes
|
|
Published:
|
May 17 2004 12:00AM
|
|
Updated:
|
Jul 12 2009 04:07AM
|
|
Credit:
|
Discovery of this vulnerability has been credited to Hugo "Vázquez" "Caramés" <overclocking_a_la_abuela@hotmail.com>.
|
|
Vulnerable:
|
Ubuntu Ubuntu Linux 5.0 4 powerpc
Ubuntu Ubuntu Linux 5.0 4 i386
Ubuntu Ubuntu Linux 5.0 4 amd64
Ubuntu Ubuntu Linux 4.1 ppc
Ubuntu Ubuntu Linux 4.1 ia64
Ubuntu Ubuntu Linux 4.1 ia32
Turbolinux Turbolinux Workstation 8.0
Turbolinux Turbolinux Workstation 7.0
Turbolinux Turbolinux Server 8.0
Turbolinux Turbolinux Server 7.0
Turbolinux Turbolinux Desktop 10.0
Turbolinux Turbolinux 10 F...
Turbolinux Home
Turbolinux Appliance Server Workgroup Edition 1.0
Turbolinux Appliance Server Hosting Edition 1.0
RedHat Enterprise Linux WS 4
RedHat Enterprise Linux WS 3
RedHat Enterprise Linux WS 2.1 IA64
RedHat Enterprise Linux WS 2.1
RedHat Enterprise Linux ES 4
RedHat Enterprise Linux ES 3
RedHat Enterprise Linux ES 2.1 IA64
RedHat Enterprise Linux ES 2.1
RedHat Enterprise Linux AS 4
RedHat Enterprise Linux AS 3
RedHat Enterprise Linux AS 2.1 IA64
RedHat Enterprise Linux AS 2.1
RedHat Desktop 4.0
RedHat Desktop 3.0
RedHat Advanced Workstation for the Itanium Processor 2.1 IA64
RedHat Advanced Workstation for the Itanium Processor 2.1
MandrakeSoft Multi Network Firewall 2.0
MandrakeSoft Linux Mandrake 10.2 x86_64
MandrakeSoft Linux Mandrake 10.2
MandrakeSoft Linux Mandrake 10.1 x86_64
MandrakeSoft Linux Mandrake 10.1
MandrakeSoft Corporate Server 3.0 x86_64
MandrakeSoft Corporate Server 3.0
GNU wget 1.9.1
+
MandrakeSoft Corporate Server 3.0 x86_64
+
MandrakeSoft Corporate Server 3.0
+
MandrakeSoft Linux Mandrake 10.2 x86_64
+
MandrakeSoft Linux Mandrake 10.2
+
MandrakeSoft Linux Mandrake 10.1 x86_64
+
MandrakeSoft Linux Mandrake 10.1
+
MandrakeSoft Linux Mandrake 10.0 AMD64
+
MandrakeSoft Linux Mandrake 10.0
GNU wget 1.9
GNU wget 1.8.2
+
Conectiva Linux 8.0
+
Conectiva Linux 7.0
+
Conectiva Linux 6.0
+
Immunix Immunix OS 7+
+
MandrakeSoft Corporate Server 2.1 x86_64
+
MandrakeSoft Corporate Server 2.1
+
MandrakeSoft Linux Mandrake 9.0
+
MandrakeSoft Linux Mandrake 8.2 ppc
+
MandrakeSoft Linux Mandrake 8.2
+
MandrakeSoft Linux Mandrake 8.1 ia64
+
MandrakeSoft Linux Mandrake 8.1
+
MandrakeSoft Linux Mandrake 8.0 ppc
+
MandrakeSoft Linux Mandrake 8.0
+
MandrakeSoft Linux Mandrake 7.2
+
MandrakeSoft Single Network Firewall 7.2
+
RedHat Linux 8.0 i386
+
RedHat Linux 7.3 i386
+
RedHat Linux 7.2 ia64
+
RedHat Linux 7.2 i386
+
RedHat Linux 7.1 ia64
+
RedHat Linux 7.1 i386
+
RedHat Linux 7.0 i386
+
RedHat Linux 6.2 i386
+
S.u.S.E. Linux 8.1
+
S.u.S.E. Linux 8.0 i386
+
S.u.S.E. Linux 8.0
+
S.u.S.E. Linux Personal 9.3
+
S.u.S.E. Linux Personal 9.2 x86_64
+
S.u.S.E. Linux Personal 9.2
+
S.u.S.E. Linux Personal 9.1 x86_64
+
S.u.S.E. Linux Personal 9.1
+
S.u.S.E. Linux Personal 9.0 x86_64
+
S.u.S.E. Linux Personal 9.0
+
S.u.S.E. Linux Personal 8.2
+
Trustix Secure Linux 1.5
GNU wget 1.8.1
+
Debian Linux 3.0 sparc
+
Debian Linux 3.0 s/390
+
Debian Linux 3.0 ppc
+
Debian Linux 3.0 mipsel
+
Debian Linux 3.0 mips
+
Debian Linux 3.0 m68k
+
Debian Linux 3.0 ia-64
+
Debian Linux 3.0 ia-32
+
Debian Linux 3.0 hppa
+
Debian Linux 3.0 arm
+
Debian Linux 3.0 alpha
GNU wget 1.8
GNU wget 1.7.1
GNU wget 1.7
GNU wget 1.6
GNU wget 1.5.3
+
Debian Linux 2.2 sparc
+
Debian Linux 2.2 powerpc
+
Debian Linux 2.2 IA-32
+
Debian Linux 2.2 arm
+
Debian Linux 2.2 alpha
+
Debian Linux 2.2 68k
|
|
|
|
Not Vulnerable:
|
|
|
|
