Lucene search
K

4 matches found

Exploit DB
Exploit DB
added 2007/05/07 12:0 a.m.27 views

ELinks Relative 0.10.6/011.1 - Path Arbitrary Code Execution

source: https://www.securityfocus.com/bid/23844/info ELinks is prone to an arbitrary code-execution vulnerability. An attacker can exploit this issue to potentially execute arbitrary code with the privileges of the user running the affected application. This issue requires an attacker to trick an...

7.4AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2007/04/13 6:19 p.m.4 views

CVE-2007-2027

Untrusted search path vulnerability in the addfilenametostring function in intl/gettext/loadmsgcat.c for Elinks 0.11.1 allows local users to cause Elinks to use an untrusted gettext message catalog .po file in a "../po" directory, which can be leveraged to conduct format string attacks...

4.4CVSS5.5AI score0.00841EPSS
Exploits1References15
CVE
CVE
added 2007/04/13 6:0 p.m.99 views

CVE-2007-2027

CVE-2007-2027 affects Elinks 0.11.1 (ELinks) via the function add_filename_to_string in intl/gettext/loadmsgcat.c, allowing a local attacker to cause Elinks to load an untrusted gettext catalog (.po) from a ../po directory and potentially perform format-string attacks. Multiple connected sources ...

4.4CVSS5.8AI score0.00841EPSS
Exploits1References13Affected Software1
Tenable Nessus
Tenable Nessus
added 2007/01/17 12:0 a.m.14 views

Fedora Core 6 : elinks-0.11.1-5.1 (2006-1278)

Tue Nov 21 2006 Karel Zak 0.11.1-5.1 - fix 215734: CVE-2006-5925 elinks smb protocol arbitrary file access - Wed Oct 11 2006 Karel Zak 0.11.1-5 - fix 210103 - elinks crashes when given bad HTTPPROXY - Wed Jul 12 2006 Jesse Keating - 0.11.1-4.1 - rebuild - Mon Jun 12 2006 Karel Zak 0.11.1-4 -...

7.5CVSS5.7AI score0.0805EPSS
Exploits0References1
Rows per page
Query Builder