CVE-2019-5953
Summary
| CVE | CVE-2019-5953 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2019-05-17 16:29:00 UTC |
| Updated | 2020-08-24 17:37:00 UTC |
| Description | Buffer overflow in GNU Wget 1.20.1 and earlier allows remote attackers to cause a denial-of-service (DoS) or may execute an arbitrary code via unspecified vectors. |
Risk And Classification
Problem Types: CWE-787
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Red Hat Customer Portal | REDHAT | access.redhat.com | |
| GNU Wget: Arbitrary code execution (GLSA 201908-19) — Gentoo security | GENTOO | security.gentoo.org | |
| Wget - GNU Project - Free Software Foundation | MISC | www.gnu.org | Product |
| JVN#25261088: GNU Wget vulnerable to buffer overflow | MISC | jvn.jp | Third Party Advisory |
| Red Hat Customer Portal | REDHAT | access.redhat.com | |
| support.f5.com/csp/article/K14560101 | CONFIRM | support.f5.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 296080 Oracle Solaris 11.4 Support Repository Update (SRU) 13.4.0 Missing (CPUJUL2019)
- 377023 Alibaba Cloud Linux Security Update for wget (ALINUX2-SA-2019:0033)
- 377090 Alibaba Cloud Linux Security Update for wget (ALINUX3-SA-2022:0063)
- 378273 Virtuozzo Linux Security Update for wget (VZLSA-2019:1228)
- 500738 Alpine Linux Security Update for wget
- 504514 Alpine Linux Security Update for wget
- 710141 Gentoo Linux GNU Wget Arbitrary code execution Vulnerability (GLSA 201908-19)