A Post on Bugtraq identifies a lot of issues with wget. Comes down to dodgy webservers can overwrite any file that the user running wget can write to. He also provided a proof of concept.
So far no fixes have been created and if the author of the advisory is correct about the state of wget’s source I wouldn’t hold my breath.
NOTE: This is a static archive of an old blog, no interactions like search or categories are current.
