Summary
The remote host is missing an update to wget
announced via advisory DSA 1904-1.
Solution
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201904-1
Insight
Daniel Stenberg discovered that wget, a network utility to retrieve files from the Web using http(s) and ftp, is vulnerable to the Null Prefix Attacks Against SSL/TLS Certificates published at the Blackhat conference some time ago. This allows an attacker to perform undetected man-in-the-middle attacks via a crafted ITU-T X.509 certificate with an injected null byte in the Common Name field.
For the oldstable distribution (etch), this problem has been fixed in version 1.10.2-2+etch1.
For the stable distribution (lenny), this problem has been fixed in version 1.11.4-2+lenny1.
For the testing distribution (squeeze), this problem will be fixed soon.
For the unstable distribution (sid), this problem has been fixed in version 1.12-1.
We recommend that you upgrade your wget packages.
Severity
Classification
-
CVE CVE-2009-3490 -
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related Vulnerabilities