elinks vulnerability

ID USN-519-1
Type ubuntu
Reporter Ubuntu
Modified 2007-09-25T00:00:00


Kalle Olavi Niemitalo discovered that if elinks makes a POST request to an HTTPS URL through a proxy, information may be sent in clear-text between elinks and the proxy. Attackers with access to the network could steal sensitive information (such as passwords).