[wget-notify] [bug #20419] wget: [CVE-2006-6719] segfaults on too
many FTP 220 responses at once
Micah Cowan
INVALID.NOREPLY at gnu.org
Mon Jul 9 14:41:41 PDT 2007
Update of bug #20419 (project wget):
Category: User Interface => None
Severity: 3 - Normal => 4 - Important
Planned Release: None => 1.11
_______________________________________________________
Follow-up Comment #1:
CVE description: "The ftp_syst function in ftp-basic.c in Free Software
Foundation (FSF) GNU wget 1.10.2 allows remote attackers to cause a denial of
service (application crash) via a malicious FTP server with a large number of
blank 220 responses to the SYST command."
_______________________________________________________
Reply to this item at:
<http://savannah.gnu.org/bugs/?20419>
_______________________________________________
Message sent via/by Savannah
http://savannah.gnu.org/
More information about the wget-notify
mailing list