Out-of-Bounds Write

2023-01-1718:58:30

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

out-of-bounds write

denial of service

unspecified impact

html file crafted

w3m binary

0.002 Low

EPSS

Percentile

57.4%

JSON

w3m is vulnerable to out-of-bounds writes. checkType located in etc.c could be triggered by sending a crafted HTML file to the w3m binary, which allows an attacker to cause Denial of Service or possibly have unspecified other impact.

CPENameOperatorVersion
w3m:bioniceq0.5.3-36build1
w3m:3.17eq0.5.3.20220429-r2
w3m:edgeeq0.5.3.20210102-r1
w3m:edgeeq0.5.3.20180125-r4
w3m:edgeeq0.5.3.20210102-r2
w3m:edgeeq0.5.3.20220429-r1
w3m:edgeeq0.5.3.20220429-r0
w3m:edgeeq0.5.3.20210102-r0
w3m:edgeeq0.5.3.20200502-r0
w3m:edgeeq0.5.3.20210102-r3

Name	Operator	Version
w3m:bionic	eq	0.5.3-36build1
w3m:3.17	eq	0.5.3.20220429-r2
w3m:edge	eq	0.5.3.20210102-r1
w3m:edge	eq	0.5.3.20180125-r4
w3m:edge	eq	0.5.3.20210102-r2
w3m:edge	eq	0.5.3.20220429-r1
w3m:edge	eq	0.5.3.20220429-r0
w3m:edge	eq	0.5.3.20210102-r0
w3m:edge	eq	0.5.3.20200502-r0
w3m:edge	eq	0.5.3.20210102-r3