FreeBSD : wget -- Heap overflow in HTTP protocol handling (d77ceb8c-bb13-11e7-8357-3065ec6f3643)
High Nessus Plugin ID 104228
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionAntti Levomaki, Christian Jalio, Joonas Pihlaja :
Wget contains two vulnerabilities, a stack overflow and a heap overflow, in the handling of HTTP chunked encoding. By convincing a user to download a specific link over HTTP, an attacker may be able to execute arbitrary code with the privileges of the user.
SolutionUpdate the affected package.