Buffer overflow in htget 0.93 allows remote attackers to execute arbitrary code via a crafted URL.