30 matches found
EUVD-2004-1611
Malware in sbrugna...
EUVD-2006-7211
Malware in sbrugna...
EUVD-2010-2814
Malware in sbrugna...
EUVD-2005-2929
Malware in sbrugna...
EUVD-2017-1485
Malware in sbrugna...
CVE-1999-0371
Lynx allows a local user to overwrite sensitive files through /tmp symlinks...
Medium: lynx
Issue Overview: Lynx through 2.8.9 mishandles the userinfo subcomponent of a URI, which allows remote attackers to discover cleartext credentials because they may appear in SNI data. CVE-2021-38165 Affected Packages: lynx Issue Correction: Run dnf update lynx --releasever 2023.3.20240219 to updat...
SUSE CVE-2008-4690
lynx 2.8.6dev.15 and earlier, when advanced mode is enabled and lynx is configured as a URL handler, allows remote attackers to execute arbitrary commands via a crafted lynxcgi: URL, a related issue to CVE-2005-2929. NOTE: this might only be a vulnerability in limited deployments that have define...
SUSE CVE-2021-38165
Lynx through 2.8.9 mishandles the userinfo subcomponent of a URI, which allows remote attackers to discover cleartext credentials because they may appear in SNI data...
Information Disclosure
lynx is vulnerable to information disclosure. The vulnerability exists due to the system mishandles the userinfo subcomponent of a URI, which allows remote attackers to discover cleartext credentials because they may appear in SNI data...
The vulnerability of the Red Hat Linux operating system allows a remote attacker to compromise the integrity of protected information.
The vulnerability of the lynx-2.8.3 package for the Red Hat Linux operating system can lead to a breach of protected information. This vulnerability can be exploited remotely...
PT-2012-6133 · Lynx · Lynx
Name of the Vulnerable Software and Affected Versions: Lynx affected versions not specified Description: The issue is related to Lynx not verifying that the server's certificate is signed by a trusted certification authority. This allows man-in-the-middle attackers to spoof SSL servers via a...
Heap overflow
Heap-based buffer overflow in the converttoidna function in WWW/Library/Implementation/HTParse.c in Lynx 2.8.8dev.1 through 2.8.8dev.4 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a malformed URL containing a % percent character in...
CVE-2008-4690
lynx 2.8.6dev.15 and earlier, when advanced mode is enabled and lynx is configured as a URL handler, allows remote attackers to execute arbitrary commands via a crafted lynxcgi: URL, a related issue to CVE-2005-2929. NOTE: this might only be a vulnerability in limited deployments that have define...
CVE-2008-4690
lynx 2.8.6dev.15 and earlier, when advanced mode is enabled and lynx is configured as a URL handler, allows remote attackers to execute arbitrary commands via a crafted lynxcgi: URL, a related issue to CVE-2005-2929. NOTE: this might only be a vulnerability in limited deployments that have define...
Lynx < 2.8.6 dev15 Arbitary Code Execution
Binary data 3287.prm...
DEBIAN-CVE-2005-3120
Stack-based buffer overflow in the HTrjis function in Lynx 2.8.6 and earlier allows remote NNTP servers to execute arbitrary code via certain article headers containing Asian characters that cause Lynx to add extra escape ESC characters...
Lynx Malformed HTML Tags DoS
Binary data 2581.prm...
CVE-2004-1617
Lynx, lynx-ssl, and lynx-cur before 2.8.6dev.8 allow remote attackers to cause a denial of service infinite loop via a web page or HTML email that contains invalid HTML including 1 a TEXTAREA tag with a large COLS value and 2 a large tag name in an element that is not terminated, as demonstrated ...
CVE-2002-1405
CRLF injection vulnerability in Lynx 2.8.4 and earlier allows remote attackers to inject false HTTP headers into an HTTP request that is provided on the command line, via a URL containing encoded carriage return, line feed, and other whitespace characters...