4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.01 Low
EPSS
Percentile
83.7%
CentOS Errata and Security Advisory CESA-2007:0933
ELinks is a text mode Web browser used from the command line that supports
rendering modern web pages.
An information disclosure flaw was found in the way ELinks passes https
POST data to a proxy server. POST data sent via a proxy to an https site is
not properly encrypted by ELinks, possibly allowing the disclosure of
sensitive information. (CVE-2007-5034)
All users of Elinks are advised to upgrade to this updated package, which
contains a backported patch that resolves this issue.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2007-October/076436.html
https://lists.centos.org/pipermail/centos-announce/2007-October/076437.html
https://lists.centos.org/pipermail/centos-announce/2007-October/076441.html
https://lists.centos.org/pipermail/centos-announce/2007-October/076442.html
https://lists.centos.org/pipermail/centos-announce/2007-October/076443.html
https://lists.centos.org/pipermail/centos-announce/2007-October/076444.html
Affected packages:
elinks
Upstream details at:
https://access.redhat.com/errata/RHSA-2007:0933
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 4 | ia64 | elinks | < 0.9.2-3.3.5.2 | elinks-0.9.2-3.3.5.2.ia64.rpm |
CentOS | 4 | s390 | elinks | < 0.9.2-3.3.5.2 | elinks-0.9.2-3.3.5.2.s390.rpm |
CentOS | 4 | s390x | elinks | < 0.9.2-3.3.5.2 | elinks-0.9.2-3.3.5.2.s390x.rpm |
CentOS | 4 | i386 | elinks | < 0.9.2-3.3.5.2 | elinks-0.9.2-3.3.5.2.i386.rpm |
CentOS | 4 | x86_64 | elinks | < 0.9.2-3.3.5.2 | elinks-0.9.2-3.3.5.2.x86_64.rpm |
CentOS | 5 | x86_64 | elinks | < 0.11.1-5.1.0.1.el5 | elinks-0.11.1-5.1.0.1.el5.x86_64.rpm |
CentOS | 5 | i386 | elinks | < 0.11.1-5.1.0.1.el5 | elinks-0.11.1-5.1.0.1.el5.i386.rpm |
CentOS | 5 | i386 | elinks | < 0.11.1-5.1.0.1.el5 | elinks-0.11.1-5.1.0.1.el5.i386.rpm |