Lucene search
K

11 matches found

OpenVAS
OpenVAS
added 2015/10/08 12:0 a.m.20 views

Oracle: Security Advisory (ELSA-2007-0933)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.5AI score0.02599EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.31 views

Scientific Linux Security Update : elinks on SL5.x, SL4.x i386/x86_64

Details : An information disclosure flaw was found in the way ELinks passes https POST data to a proxy server. POST data sent via a proxy to an https site is not properly encrypted by ELinks, possibly allowing the disclosure of sensitive information. CVE-2007-5034 %NASLMINLEVEL 70300 C Tenable...

4.3CVSS5.3AI score0.02599EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.17 views

Fedora Update for elinks FEDORA-2007-710

Check for the Version of elinks OpenVAS Vulnerability Test Fedora Update for elinks FEDORA-2007-710 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

4.3CVSS6.4AI score0.02599EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2007/10/09 12:0 a.m.19 views

Fedora Core 6 : elinks-0.11.3-1.fc6 (2007-710)

Jump to new upstream version because of security issue 297991/done some other changes already committed to devel Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it ...

4.3CVSS5.3AI score0.02599EPSS
Exploits0References2
securityvulns
securityvulns
added 2007/10/04 12:0 a.m.47 views

[SECURITY] [DSA 1380-1] New elinks packages fix information disclosure

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA 1380-1 [email protected] http://www.debian.org/security/ Steve Kemp October 2nd, 2007 http://www.debian.org/security/faq -...

4.3CVSS0.1AI score0.02599EPSS
Exploits0
Cent OS
Cent OS
added 2007/10/03 4:19 p.m.52 views

elinks security update

CentOS Errata and Security Advisory CESA-2007:0933 An updated ELinks package that corrects a security vulnerability is now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. ELinks is a text mode Web...

4.3CVSS5.6AI score0.02599EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2007/10/03 3:47 p.m.24 views

Moderate: Red Hat Security Advisory: elinks security update

An updated ELinks package that corrects a security vulnerability is now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. ELinks is a text mode Web browser used from the command line that supports...

4.3CVSS5.6AI score0.02599EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2007/10/03 12:0 a.m.32 views

Moderate: elinks security update

0.9.2-3.3.5.2 - fix elinks-0.9.2-httpspostdata.patch 303881 0.9.2-3.3.5.1 - fix 297611 - CVE-2007-5034 elinks reveals POST data to HTTPS proxy 0.9.2-3.3 - fix 215731 - elinks smb protocol arbitrary file access...

4.3CVSS0.7AI score0.02599EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/10/03 12:0 a.m.19 views

Debian DSA-1380-1 : elinks - programming error

Kalle Olavi Niemitalo discovered that elinks, an advanced text-mode WWW browser, sent HTTP POST data in cleartext when using an HTTPS proxy server potentially allowing private information to be disclosed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks...

4.3CVSS5.4AI score0.02599EPSS
Exploits0References3
OSV
OSV
added 2007/09/21 8:17 p.m.9 views

CVE-2007-5034

ELinks before 0.11.3, when sending a POST request for an https URL, appends the body and content headers of the POST request to the CONNECT request in cleartext, which allows remote attackers to sniff sensitive data that would have been protected by TLS. NOTE: this issue only occurs when a proxy ...

6.5AI score
Exploits0References20
CVE
CVE
added 2007/09/21 8:0 p.m.63 views

CVE-2007-5034

CVE-2007-5034 affects ELinks prior to 0.11.3. When sending a POST over HTTPS via a proxy, the body and headers of the POST are appended to the CONNECT request in cleartext, enabling potential disclosure of sensitive data. Impact: information disclosure via TLS-protected traffic when a HTTPS proxy...

4.3CVSS6.3AI score0.02599EPSS
Exploits0References20Affected Software1
Rows per page
Query Builder