BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
Re: [oss-security] [oCERT-2010-001] multiple http client unexpected download filename vulnerability Jun 11 2010 08:53AM
Solar Designer (solar openwall com)
Hi,

Here's a summary of relevant postings to oss-security and bug-wget.

Unofficial patch for wget, by Florian Weimer:
http://www.openwall.com/lists/oss-security/2010/05/17/2

PoC attack on a wget cron job resulting in a .bash_profile overwrite:
http://www.openwall.com/lists/oss-security/2010/05/18...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus