DEBIAN-CVE-2004-1488

See a problem?
Please try reporting it to the source first.

Source

https://security-tracker.debian.org/tracker/CVE-2004-1488

Import Source

https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2004-1488.json

JSON Data

https://api.osv.dev/v1/vulns/DEBIAN-CVE-2004-1488

Upstream

CVE-2004-1488

Published

2005-04-27T04:00:00Z

Modified

2025-09-24T23:51:07.021821Z

Summary

[none]

Details

wget 1.8.x and 1.9.x does not filter or quote control characters when displaying HTTP responses to the terminal, which may allow remote malicious web servers to inject terminal escape sequences and execute arbitrary code.

References

https://security-tracker.debian.org/tracker/CVE-2004-1488

Affected packages

Debian:11 / wget

Package

Name: wget
Purl: pkg:deb/debian/wget?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.9.1-11

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / wget

Package

Name: wget
Purl: pkg:deb/debian/wget?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.9.1-11

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / wget

Package

Name: wget
Purl: pkg:deb/debian/wget?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.9.1-11

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:14 / wget

Package

Name: wget
Purl: pkg:deb/debian/wget?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.9.1-11

Ecosystem specific

{
    "urgency": "not yet assigned"
}