[Forgot Password]
Login  Register Subscribe

23631

 
 

122183

 
 

98060

 
 

909

 
 

79198

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

USN-851-1 -- elinks vulnerabilities

ID: oval:org.secpod.oval:def:700395Date: (C)2011-05-13   (M)2017-11-27
Class: PATCHFamily: unix




Teemu Salmela discovered that Elinks did not properly validate input when processing smb:// URLs. If a user were tricked into viewing a malicious website and had smbclient installed, a remote attacker could execute arbitrary code with the privileges of the user invoking the program. Jakub Wilk discovered a logic error in Elinks, leading to a buffer overflow. If a user were tricked into viewing a malicious website, a remote attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of the user invoking the program

Platform:
Ubuntu 6.06
Product:
elinks
Reference:
USN-851-1
CVE-2006-5925
CVE-2008-7224
CVE    2
CVE-2006-5925
CVE-2008-7224
CPE    1
cpe:/o:ubuntu:ubuntu_linux:6.06

© 2013 SecPod Technologies