Test ID:	1.3.6.1.4.1.25623.1.0.840489
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-982-1)
Summary:	The remote host is missing an update for the 'wget' package(s) announced via the USN-982-1 advisory.
Description:	Summary: The remote host is missing an update for the 'wget' package(s) announced via the USN-982-1 advisory. Vulnerability Insight: It was discovered that Wget would use filenames provided by the server when following 3xx redirects. If a user or automated system were tricked into downloading a file from a malicious site, a remote attacker could create the file with an arbitrary name (e.g. .wgetrc), and possibly run arbitrary code. Affected Software/OS: 'wget' package(s) on Ubuntu 6.06, Ubuntu 8.04, Ubuntu 9.04, Ubuntu 9.10, Ubuntu 10.04. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-2252 BugTraq ID: 65722 http://www.securityfocus.com/bid/65722 http://www.ocert.org/advisories/ocert-2010-001.html http://lists.gnu.org/archive/html/bug-wget/2010-05/msg00031.html http://lists.gnu.org/archive/html/bug-wget/2010-05/msg00033.html http://lists.gnu.org/archive/html/bug-wget/2010-05/msg00023.html http://lists.gnu.org/archive/html/bug-wget/2010-05/msg00032.html http://lists.gnu.org/archive/html/bug-wget/2010-05/msg00034.html http://marc.info/?l=oss-security&m=127412569216380&w=2 http://marc.info/?l=oss-security&m=127411372529485&w=2 http://marc.info/?l=oss-security&m=127416905831994&w=2 http://marc.info/?l=oss-security&m=127422615924593&w=2 http://marc.info/?l=oss-security&m=127427572721591&w=2 http://marc.info/?l=oss-security&m=127432968701342&w=2 http://marc.info/?l=oss-security&m=127441275821210&w=2 http://marc.info/?l=oss-security&m=127611288927500&w=2 RedHat Security Advisories: RHSA-2014:0151 http://rhn.redhat.com/errata/RHSA-2014-0151.html
Copyright	Copyright (C) 2010 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.