Allele Security Alert
ASA-2019-00284, CVE-2019-5953, JVNDB-2019-000022
Buffer overflow vulnerability in the handling of Internationalized Resource Identifiers (IRI)
wget before version 1.20.3
wget version 1.20.3
Proof of concept
It was discovered a buffer overflow vulnerability in the handling of Internationalized Resource Identifiers (IRI) in wget, a network utility to retrieve files from the web, which could result in the execution of arbitrary code or denial of service when recursively downloading from an untrusted server.
Fix a buffer overflow vulnerability
* NEWS: Update NEWS for new releasev1.20.3
GNU Wget vulnerable to buffer overflow
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: May 20, 2019