1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Exploit for GNU wget RCE flaw revealed

Discussion in 'Help Net Security' started by RSS, Jul 5, 2016.

  1. RSS

    RSS New Member Member

    Technical details about a serious vulnerability affecting all but the latest version of the GNU wget software have been released online, along with PoC exploit scenarios. Unearthed by security researcher Dawid Golunski, the flaw (CVE-2016-4971) was reported to the software’s developer through Beyond Security’s SecuriTeam, and has been fixed in version 1.18 of the popular utility for retrieving content from web servers. The vulnerability arose due to the way wget handles redirects, and could be … More →

    Continue reading...

Share This Page