Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2005-2929HistoryNov 18, 2005 - 11:00 a.m.
CVE-2005-2929
2005-11-1811:00:00
Debian Security Bug Tracker
security-tracker.debian.org
12
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.018 Low
EPSS
Percentile
88.2%
Lynx 2.8.5, and other versions before 2.8.6dev.15, allows remote attackers to execute arbitrary commands via (1) lynxcgi:, (2) lynxexec, and (3) lynxprog links, which are not properly restricted in the default configuration in some environments.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | lynx | < 2.9.0dev.12-1 | lynx_2.9.0dev.12-1_all.deb |
| Debian | 11 | all | lynx | < 2.9.0dev.6-3~deb11u1 | lynx_2.9.0dev.6-3~deb11u1_all.deb |
| Debian | 999 | all | lynx | < 2.9.2-1 | lynx_2.9.2-1_all.deb |
| Debian | 13 | all | lynx | < 2.9.2-1 | lynx_2.9.2-1_all.deb |
Related
nessus
nessus
Fedora Core 3 : lynx-2.8.5-18.0.2 (2005-1078)
2005-11-15 00:00:00
Fedora Core 4 : lynx-2.8.5-23.2 (2005-1079)
2005-11-15 00:00:00
CentOS 3 / 4 : lynx (CESA-2005:839)
2006-07-03 00:00:00
nvd
nvd
CVE-2005-2929
2005-11-18 06:03:00
CVE-2008-4690
2008-10-22 18:00:01
cve
cve
CVE-2005-2929
2005-11-18 11:00:00
CVE-2008-4690
2008-10-22 18:00:01
openvas
openvas
Gentoo Security Advisory GLSA 200511-09 (lynx)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200511-09 (lynx)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200909-15 (lynx)
2009-09-15 00:00:00
redhat
redhat
(RHSA-2005:839) lynx security update
2005-11-11 00:00:00
ubuntucve
ubuntucve
CVE-2005-2929
2005-11-18 00:00:00
CVE-2008-4690
2008-10-22 00:00:00
centos
centos
lynx security update
2005-11-12 01:33:47
lynx security update
2005-11-13 22:59:14
cvelist
cvelist
CVE-2005-2929
2005-11-18 11:00:00
CVE-2008-4690
2008-10-22 17:00:00
gentoo
gentoo
Lynx: Arbitrary command execution
2005-11-13 00:00:00
Lynx: Arbitrary command execution
2009-09-12 00:00:00
securityvulns
securityvulns
debiancve
debiancve
CVE-2008-4690
2008-10-22 18:00:01
prion
prion
Sql injection
2008-10-22 18:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.018 Low
EPSS
Percentile
88.2%
Related for DEBIANCVE:CVE-2005-2929