CVE-2016-7098

Published: Sep 26, 2016

Modified: Aug 6, 2024

PUBLISHED

Description

Race condition in wget 1.17 and earlier, when used in recursive or mirroring mode to download a single file, might allow remote servers to bypass intended access list restrictions by keeping an HTTP connection open.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20160827 Re: CVE Request - Gnu Wget 1.17 - Design Error Vulnerability

mailing-list

x_refsource_MLIST

openSUSE-SU-2017:0015

vendor-advisory

x_refsource_SUSE

openSUSE-SU-2016:2284

vendor-advisory

x_refsource_SUSE

93157

vdb-entry

x_refsource_BID

40824

exploit

x_refsource_EXPLOIT-DB

[bug-wget] 20160814 Wget - acess list bypass / race condition PoC

mailing-list

x_refsource_MLIST

[bug-wget] 20160824 Re: Wget - acess list bypass / race condition PoC

mailing-list

x_refsource_MLIST

[debian-lts-announce] 20200129 [SECURITY] [DLA 2086-1] wget security update

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-7098

Description

Affected Products

References