Published: 06/05/2018 Updated: 15/03/2019

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 435

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

GNU Wget prior to 1.19.5 is prone to a cookie injection vulnerability in the resp_new function in http.c via a \r\n sequence in a continuation line.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gnu wget
canonical ubuntu linux 18.04
canonical ubuntu linux 12.04
canonical ubuntu linux 14.04
canonical ubuntu linux 16.04
canonical ubuntu linux 17.10
debian debian linux 7.0
debian debian linux 8.0
debian debian linux 9.0
redhat enterprise linux server 7.0
redhat enterprise linux desktop 7.0
redhat enterprise linux workstation 7.0

Synopsis Moderate: wget security and bug fix update Type/Severity Security Advisory: Moderate Topic An update for wget is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base sco ...

Debian Bug report logs - #898076 wget: CVE-2018-0494: cookie injection Package: src:wget; Maintainer for src:wget is Noël Köthe <noel@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 6 May 2018 18:57:02 UTC Severity: grave Tags: fixed-upstream, patch, security, upstream Found in versi ...

Wget could be made to inject arbitrary cookie values ...

Harry Sintonen discovered that wget, a network utility to retrieve files from the web, does not properly handle '\r\n' from continuation lines while parsing the Set-Cookie HTTP header A malicious web server could use this flaw to inject arbitrary cookies to the cookie jar file, adding new or replacing existing cookie values For the oldstable dist ...

A cookie injection flaw was found in wget An attacker can create a malicious website which, when accessed, overrides cookies belonging to arbitrary domains(CVE-2018-0494) ...

A cookie injection flaw was found in wget An attacker can create a malicious website which, when accessed, overrides cookies belonging to arbitrary domains ...

GNU Wget Cookie Injection [CVE-2018-0494] ========================================= The latest version of this advisory is available at: sintonenfi/advisories/gnu-wget-cookie-injectiontxt Overview -------- GNU Wget is susceptible to a malicious web server injecting arbitrary cookies to the cookie jar file Description ----------- No ...

GNU Wget versions 17 through 1194 suffer from a cookie injection vulnerability ...

CWE-20 https://savannah.gnu.org/bugs/?53763 https://lists.gnu.org/archive/html/bug-wget/2018-05/msg00020.html https://git.savannah.gnu.org/cgit/wget.git/commit/?id=1fc9c95ec144499e69dc8ec76dbe07799d7d82cd https://sintonen.fi/advisories/gnu-wget-cookie-injection.txt http://www.securitytracker.com/id/1040838 https://www.exploit-db.com/exploits/44601/https://www.debian.org/security/2018/dsa-4195 https://usn.ubuntu.com/3643-2/https://usn.ubuntu.com/3643-1/http://www.securityfocus.com/bid/104129 https://lists.debian.org/debian-lts-announce/2018/05/msg00006.html https://security.gentoo.org/glsa/201806-01 https://access.redhat.com/errata/RHSA-2018:3052 https://access.redhat.com/errata/RHSA-2018:3052 https://usn.ubuntu.com/3643-2/https://nvd.nist.gov https://www.exploit-db.com/exploits/44601/

CVE-2018-0494

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect