Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: [oss-security] [oCERT-2010-001] multiple http client unexpected download filename vulnerability
Jun 11 2010 08:53AM
Solar Designer (solar openwall com)
Here's a summary of relevant postings to oss-security and bug-wget.
Unofficial patch for wget, by Florian Weimer:
PoC attack on a wget cron job resulting in a .bash_profile overwrite:
[ more ]
Copyright 2010, SecurityFocus