CVE-2004-1488

Publication date 27 April 2005

Last updated 17 July 2025

Ubuntu priority

wget 1.8.x and 1.9.x does not filter or quote control characters when displaying HTTP responses to the terminal, which may allow remote malicious web servers to inject terminal escape sequences and execute arbitrary code.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
wget	7.04 feisty	Fixed 1.10.2-1ubuntu1
	6.10 edgy	Fixed 1.10.2-1ubuntu1
	6.06 LTS dapper	Fixed 1.10.2-1ubuntu1

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-145-1
wget vulnerabilities
28 June 2005

Other references

https://www.cve.org/CVERecord?id=CVE-2004-1488