elinks vulnerability

2007-09-25T00:00:00
ID USN-519-1
Type ubuntu
Reporter Ubuntu
Modified 2007-09-25T00:00:00

Description

Kalle Olavi Niemitalo discovered that if elinks makes a POST request to an HTTPS URL through a proxy, information may be sent in clear-text between elinks and the proxy. Attackers with access to the network could steal sensitive information (such as passwords).