CVE-2006-6719

GNU Wget 1.10.2 - DoS

Title source: llm

Description

The ftp_syst function in ftp-basic.c in Free Software Foundation (FSF) GNU wget 1.10.2 allows remote attackers to cause a denial of service (application crash) via a malicious FTP server with a large number of blank 220 responses to the SYST command.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Federico L. Bossi Bonin · perldosmultiple

https://www.exploit-db.com/exploits/2947

View Code ZIP pw:eip

References (4)

[Issue Tracking] https://issues.rpath.com/browse/RPL-930

[Exploit] http://www.securityfocus.com/bid/21650

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/2947

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDKSA-2007:017

Scores

EPSS 0.0483

EPSS Percentile 89.5%

Details

Status published

Products (12)

gnu/wget 1.5.3

gnu/wget 1.6

gnu/wget 1.7

gnu/wget 1.7.1

gnu/wget 1.8

gnu/wget 1.8.1

gnu/wget 1.8.2

gnu/wget 1.9

gnu/wget 1.9.1

gnu/wget 1.10

... and 2 more

Published Dec 23, 2006

Tracked Since Feb 18, 2026