+++ This bug was initially created as a clone of Bug #157498 +++ Wget 1.9 and 1.9.1 allows local users to overwrite arbitrary files via a symlink attack on the name of the file being downloaded. http://marc.theaimsgroup.com/?l=bugtraq&m=108481268725276&w=2