Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2019.0015
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2019-0015)
Zusammenfassung:	The remote host is missing an update for the 'wget' package(s) announced via the MGASA-2019-0015 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'wget' package(s) announced via the MGASA-2019-0015 advisory. Vulnerability Insight: Since version 1.19 Wget stores the URL and in certain cases the 'Referer' URL within extended attributes (xattrs) of the file system - by default. This includes username + password and other credentials or private data *if* those have been used within the URLs. Anyone with read access to those files might also read the xattrs and might use the data. Wget 1.20.1 or higher will not use xattrs by default any more. To enable it again you have to use the --xattr option or xattr command for .wgetrc files. (CVE-2018-20483) Affected Software/OS: 'wget' package(s) on Mageia 6. Solution: Please install the updated package(s). CVSS Score: 2.1 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2018-20483 BugTraq ID: 106358 http://www.securityfocus.com/bid/106358 https://security.gentoo.org/glsa/201903-08 http://git.savannah.gnu.org/cgit/wget.git/tree/NEWS https://twitter.com/marcan42/status/1077676739877232640 RedHat Security Advisories: RHSA-2019:3701 https://access.redhat.com/errata/RHSA-2019:3701 https://usn.ubuntu.com/3943-1/
Copyright	Copyright (C) 2022 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.