17 matches found
Oracle Linux 4 : elinks (ELSA-2006-0742)
From Red Hat Security Advisory 2006:0742 : An updated elinks package that corrects a security vulnerability is now available for Red Hat Enterprise Linux 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. Elinks is a text mode Web browser used...
Ubuntu USN-851-1 (elinks)
The remote host is missing an update to elinks announced via advisory USN-851-1. OpenVAS Vulnerability Test $Id: ubuntu8511.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu8511.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-851-1 elinks Authors: Thomas Rein...
Ubuntu 6.06 LTS : elinks vulnerabilities (USN-851-1)
Teemu Salmela discovered that Elinks did not properly validate input when processing smb:// URLs. If a user were tricked into viewing a malicious website and had smbclient installed, a remote attacker could execute arbitrary code with the privileges of the user invoking the program. CVE-2006-5925...
USN-851-1: Elinks vulnerabilities
Teemu Salmela discovered that Elinks did not properly validate input when processing smb:// URLs. If a user were tricked into viewing a malicious website and had smbclient installed, a remote attacker could execute arbitrary code with the privileges of the user invoking the program. CVE-2006-5925...
Gentoo Security Advisory GLSA 200701-27 (elinks)
The remote host is missing updates announced in advisory GLSA 200701-27. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200701-27 (elinks)
The remote host is missing updates announced in advisory GLSA 200701-27. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE 10 Security Update : links (links-2292)
Malicious websites could abuse smb:// URLs to read or write arbitrary files of the user CVE-2006-5925. Therefore this update disables SMB support in links. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...
Fedora Core 6 : elinks-0.11.1-5.1 (2006-1278)
Tue Nov 21 2006 Karel Zak 0.11.1-5.1 - fix 215734: CVE-2006-5925 elinks smb protocol arbitrary file access - Wed Oct 11 2006 Karel Zak 0.11.1-5 - fix 210103 - elinks crashes when given bad HTTPPROXY - Wed Jul 12 2006 Jesse Keating - 0.11.1-4.1 - rebuild - Mon Jun 12 2006 Karel Zak 0.11.1-4 -...
Fedora Core 5 : elinks-0.11.0-2.4 (2006-1277)
Tue Nov 21 2006 Karel Zak 0.11.0-2.4 - fix 215734: CVE-2006-5925 elinks smb protocol arbitrary file access - Mon May 29 2006 Karel Zak 0.11.0-2.3 - add buildrequires bzip2-devel, expat-devel,libidn-devel Note that Tenable Network Security has extracted the preceding description block directly...
[SECURITY] [DSA-1240-1] New links2 packages fix arbitrary shell command execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1240-1 [email protected] http://www.debian.org/security/ Steve Kemp December 21, 2006 - ------------------------------------------------------------------------ Package : links2 Vulnerability :...
Debian DSA-1228-1 : elinks - insufficient escaping
Teemu Salmela discovered that the elinks character mode web browser performs insufficient sanitising of smb:// URIs, which might lead to the execution of arbitrary shell commands. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
[SECURITY] [DSA 1228-1] New elinks packages fix arbitrary shell command execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 1228-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 5th, 2006 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1226-1] New links packages fix arbitrary shell command execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 1226-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 3rd, 2006 http://www.debian.org/security/faq -...
CVE-2006-5925
Links web browser 1.00pre12 and Elinks 0.9.2 with smbclient installed allows remote attackers to execute arbitrary code via shell metacharacters in an smb:// URI, as demonstrated by using PUT and GET statements...
CVE-2006-5925
Links web browser 1.00pre12 and Elinks 0.9.2 with smbclient installed allows remote attackers to execute arbitrary code via shell metacharacters in an smb:// URI, as demonstrated by using PUT and GET statements...
CVE-2006-5925
Links web browser 1.00pre12 and Elinks 0.9.2 with smbclient installed allows remote attackers to execute arbitrary code via shell metacharacters in an smb:// URI, as demonstrated by using PUT and GET statements...
CVE-2006-5925
Links web browser 1.00pre12 and Elinks 0.9.2 with smbclient installed allows remote attackers to execute arbitrary code via shell metacharacters in an smb:// URI, as demonstrated by using PUT and GET statements...