CVE-2004-1488

N/A Unknown

Published: April 27, 2005 Modified: April 16, 2026

Description

wget 1.8.x and 1.9.x does not filter or quote control characters when displaying HTTP responses to the terminal, which may allow remote malicious web servers to inject terminal escape sequences and execute arbitrary code.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=261755

Source: cve@mitre.org

Exploit Vendor Advisory

http://marc.info/?l=bugtraq&m=110269474112384&w=2

Source: cve@mitre.org

http://secunia.com/advisories/20960

Source: cve@mitre.org

http://securitytracker.com/id?1012472

Source: cve@mitre.org

http://www.novell.com/linux/security/advisories/2006_16_sr.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2005-771.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/11871

Source: cve@mitre.org

Exploit Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/18421

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9750

Source: cve@mitre.org

https://usn.ubuntu.com/145-1/

Source: cve@mitre.org

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=261755