Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2016-7098

Опубликовано: 11 авг. 2016
Источник: redhat
CVSS2: 2.6
EPSS Низкий

Описание

Race condition in wget 1.17 and earlier, when used in recursive or mirroring mode to download a single file, might allow remote servers to bypass intended access list restrictions by keeping an HTTP connection open.

Отчет

Red Hat Product Security determined that this flaw was not a security vulnerability. See the Bugzilla link for more details.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5wgetNot affected
Red Hat Enterprise Linux 6wgetNot affected
Red Hat Enterprise Linux 7wgetNot affected

Показывать по

Ссылки на источники

Дополнительная информация

https://bugzilla.redhat.com/show_bug.cgi?id=1328137wget: files rejected by access list are kept on the disk for the duration of HTTP connection

EPSS

Процентиль: 92%
0.08815
Низкий

2.6 Low

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2016-7098

CVSS3: 8.1
ubuntu
больше 9 лет назад

Race condition in wget 1.17 and earlier, when used in recursive or mirroring mode to download a single file, might allow remote servers to bypass intended access list restrictions by keeping an HTTP connection open.

nvd логотип

CVE-2016-7098

CVSS3: 8.1
nvd
больше 9 лет назад

Race condition in wget 1.17 and earlier, when used in recursive or mirroring mode to download a single file, might allow remote servers to bypass intended access list restrictions by keeping an HTTP connection open.

debian логотип

CVE-2016-7098

CVSS3: 8.1
debian
больше 9 лет назад

Race condition in wget 1.17 and earlier, when used in recursive or mir ...

suse-cvrf логотип

openSUSE-SU-2017:0015-1

suse-cvrf
около 9 лет назад

Security update for wget

suse-cvrf логотип

SUSE-SU-2016:3268-1

suse-cvrf
около 9 лет назад

Security update for wget

EPSS

Процентиль: 92%
0.08815
Низкий

2.6 Low

CVSS2