MiracleLinux 3 : w3m-0.5.1-17.AXS3 (AXSA:2010-392:01)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2010-392:01 advisory. The w3m program is a pager or text file viewer that can also be used as a text-mode Web browser. W3m features include the following: when reading an HTML...

EUVD-2023-42073

Malicious code in bioql PyPI...

EUVD-2023-42072

Malicious code in bioql PyPI...

w3m Security Vulnerabilities

w3m is a WWW-enabled pager from the personal developer Tatsuya Kinoshita. A security vulnerability exists in W3M, which stems from an out-of-bounds write issue found in the checkType function's backspace handling in etc.c. The vulnerability can be triggered by supplying a specially crafted HTML...

UBUNTU-CVE-2023-38253

An out-of-bounds read flaw was found in w3m, in the growbuftoStr function in indep.c. This issue may allow an attacker to cause a denial of service through a crafted HTML file...

w3m 缓冲区错误漏洞

w3m is a WWW-enabled pager from the personal developer Tatsuya Kinoshita. A security vulnerability exists in w3m, which stems from an out-of-bounds read problem in the growbuftoStr method of indep.c, which could lead to a denial-of-service attack...

SUSE CVE-2016-9424

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m doesn't properly validate the value of tag attribute, which allows remote attackers to cause a denial of service heap buffer overflow crash and possibly execute arbitrary code via a crafted HTML page...

SUSE SLES15 / openSUSE 15 Security Update : w3m (SUSE-SU-2023:0065-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0065-1 advisory. - There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by sending a crafted HTML file to the w3...

USN-5796-2 w3m vulnerability

USN-5796-1 fixed a vulnerability in w3m. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: It was discovered that w3m incorrectly handled certain HTML files. A remote attacker could use this issue to cause w3m to crash, resulting in a denial of service...

USN-5796-1 w3m vulnerability

It was discovered that w3m incorrectly handled certain HTML files. A remote attacker could use this issue to cause w3m to crash, resulting in a denial of service, or possibly execute arbitrary code...

CVE-2018-6197

w3m through 0.5.3 is prone to a NULL pointer dereference flaw in formUpdateBuffer in form.c...

CVE-2018-6196

w3m through 0.5.3 is prone to an infinite recursion flaw in HTMLlineproc0 because the feedtableblocktag function in table.c does not prevent a negative indent value...

DEBIAN-CVE-2018-6198

w3m through 0.5.3 does not properly handle temporary files when the /.w3m directory is unwritable, which allows a local attacker to craft a symlink attack to overwrite arbitrary files...

CVE-2018-6197

w3m through 0.5.3 is prone to a NULL pointer dereference flaw in formUpdateBuffer in form.c...

Null pointer dereference

w3m through 0.5.3 is prone to a NULL pointer dereference flaw in formUpdateBuffer in form.c...

CVE-2018-6197

w3m through 0.5.3 is prone to a NULL pointer dereference flaw in formUpdateBuffer in form.c...

w3m Arbitrary File Overwrite Vulnerability

w3m is an open source text-based Web browser . A security vulnerability exists in w3m 0.5.3 and earlier versions, which stems from the program failing to properly handle temporary files. A local attacker can exploit this vulnerability by performing a symbolic link attack to overwrite arbitrary...

CVE-2018-6198

w3m through 0.5.3 does not properly handle temporary files when the /.w3m directory is unwritable, which allows a local attacker to craft a symlink attack to overwrite arbitrary files...

UBUNTU-CVE-2018-6198

w3m through 0.5.3 does not properly handle temporary files when the /.w3m directory is unwritable, which allows a local attacker to craft a symlink attack to overwrite arbitrary files...

w3m denial of service vulnerability (CNVD-2016-13132)

w3m is an open source text-based Web browser . A security vulnerability exists in versions of w3m prior to 0.5.3-33. A remote attacker can exploit this vulnerability to cause a denial of service segmentation error and crash with the help of specially crafted HTML pages...