Search criteria
15 vulnerabilities found for lynx by lynx
FKIE_CVE-2016-9179
Vulnerability from fkie_nvd - Published: 2016-12-22 21:59 - Updated: 2025-04-12 10:46
Severity ?
Summary
lynx: It was found that Lynx doesn't parse the authority component of the URL correctly when the host name part ends with '?', and could instead be tricked into connecting to a different host.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | http://www.openwall.com/lists/oss-security/2016/11/04/1 | Mailing List, Third Party Advisory | |
| cve@mitre.org | http://www.securityfocus.com/bid/94215 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.openwall.com/lists/oss-security/2016/11/04/1 | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/94215 | Third Party Advisory, VDB Entry |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:lynx:lynx:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7CDDBBB0-67BA-4A55-9C7A-1AEB7CF73B52",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "lynx: It was found that Lynx doesn\u0027t parse the authority component of the URL correctly when the host name part ends with \u0027?\u0027, and could instead be tricked into connecting to a different host."
},
{
"lang": "es",
"value": "lynx: Se ha descubierto que Lynx no analiza correctamente el componente de autoridad de la URL cuando la parte del nombre del anfitri\u00f3n termina con \u0027?\u0027, y podr\u00eda en su lugar ser enga\u00f1ado para conectar con un anfitri\u00f3n distinto."
}
],
"id": "CVE-2016-9179",
"lastModified": "2025-04-12T10:46:40.837",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2016-12-22T21:59:00.147",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2016/11/04/1"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/94215"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2016/11/04/1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/94215"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2012-5821
Vulnerability from fkie_nvd - Published: 2012-11-04 22:55 - Updated: 2025-04-11 00:51
Severity ?
Summary
Lynx does not verify that the server's certificate is signed by a trusted certification authority, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate, related to improper use of a certain GnuTLS function.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf | Exploit | |
| cve@mitre.org | http://www.mandriva.com/security/advisories?name=MDVSA-2013:101 | Broken Link | |
| cve@mitre.org | http://www.ubuntu.com/usn/USN-1642-1 | Third Party Advisory | |
| cve@mitre.org | https://exchange.xforce.ibmcloud.com/vulnerabilities/79930 | Third Party Advisory, VDB Entry | |
| cve@mitre.org | https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0351 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf | Exploit | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.mandriva.com/security/advisories?name=MDVSA-2013:101 | Broken Link | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.ubuntu.com/usn/USN-1642-1 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://exchange.xforce.ibmcloud.com/vulnerabilities/79930 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0351 | Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| lynx | lynx | - | |
| canonical | ubuntu_linux | 10.04 | |
| canonical | ubuntu_linux | 11.10 | |
| canonical | ubuntu_linux | 12.04 | |
| canonical | ubuntu_linux | 12.10 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:lynx:lynx:-:*:*:*:*:*:*:*",
"matchCriteriaId": "88A939DB-9F4D-4130-893E-4EE90BDF294E",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*",
"matchCriteriaId": "01EDA41C-6B2E-49AF-B503-EB3882265C11",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*",
"matchCriteriaId": "E4174F4F-149E-41A6-BBCC-D01114C05F38",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*",
"matchCriteriaId": "CB66DB75-2B16-4EBF-9B93-CE49D8086E41",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*",
"matchCriteriaId": "E2076871-2E80-4605-A470-A41C1A8EC7EE",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Lynx does not verify that the server\u0027s certificate is signed by a trusted certification authority, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate, related to improper use of a certain GnuTLS function."
},
{
"lang": "es",
"value": "Lynx no verifica que el certificado del servidor est\u00e1 firmado por una autoridad de certificaci\u00f3n de confianza, lo que permite ataques man-in-the-middle con los que se falsifican servidores SSL mediante certificados hechos a mano. Se trata de un problema relacionado con el uso indebido de una funci\u00f3n GnuTLS determinada."
}
],
"id": "CVE-2012-5821",
"lastModified": "2025-04-11T00:51:21.963",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 4.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.2,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2012-11-04T22:55:04.827",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Exploit"
],
"url": "http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:101"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-1642-1"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/79930"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0351"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit"
],
"url": "http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:101"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-1642-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/79930"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0351"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-295"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2010-2810
Vulnerability from fkie_nvd - Published: 2010-08-20 18:00 - Updated: 2025-04-11 00:51
Severity ?
Summary
Heap-based buffer overflow in the convert_to_idna function in WWW/Library/Implementation/HTParse.c in Lynx 2.8.8dev.1 through 2.8.8dev.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a malformed URL containing a % (percent) character in the domain name.
References
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.8:dev.1:*:*:*:*:*:*",
"matchCriteriaId": "42FB67C0-FDC8-47D4-9F16-D2AF58702154",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.8:dev.2:*:*:*:*:*:*",
"matchCriteriaId": "F1D960C6-14BE-40F9-A1D7-AAA8BACBF110",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.8:dev.3:*:*:*:*:*:*",
"matchCriteriaId": "50A549F2-0202-4FFE-9EF3-2B1334DB32F1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.8:dev.4:*:*:*:*:*:*",
"matchCriteriaId": "1042CE97-1042-4BED-9A42-18379A309780",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Heap-based buffer overflow in the convert_to_idna function in WWW/Library/Implementation/HTParse.c in Lynx 2.8.8dev.1 through 2.8.8dev.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a malformed URL containing a % (percent) character in the domain name."
},
{
"lang": "es",
"value": "Desbordamiento de b\u00fafer basado en la memoria din\u00e1mica en la funci\u00f3n convert_to_idna en WWW/Library/Implementation/HTParse.c en Lynx v2.8.8dev.1 hasta v2.8.8dev.4 permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda de aplicaci\u00f3n) o posilemete ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de una URL mal formada qye contiene un caracter % (porcentaje) en el nombre de dominio."
}
],
"id": "CVE-2010-2810",
"lastModified": "2025-04-11T00:51:21.963",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
]
},
"published": "2010-08-20T18:00:02.250",
"references": [
{
"source": "secalert@redhat.com",
"url": "http://marc.info/?l=oss-security\u0026m=128151768510564\u0026w=2"
},
{
"source": "secalert@redhat.com",
"url": "http://marc.info/?l=oss-security\u0026m=128152412221677\u0026w=2"
},
{
"source": "secalert@redhat.com",
"url": "http://www.ubuntu.com/usn/USN-1642-1"
},
{
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
],
"url": "http://www.vupen.com/english/advisories/2010/2042"
},
{
"source": "secalert@redhat.com",
"url": "https://bugs.launchpad.net/ubuntu/+source/lynx-cur/+bug/613254"
},
{
"source": "secalert@redhat.com",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/61007"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=oss-security\u0026m=128151768510564\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=oss-security\u0026m=128152412221677\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.ubuntu.com/usn/USN-1642-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://www.vupen.com/english/advisories/2010/2042"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://bugs.launchpad.net/ubuntu/+source/lynx-cur/+bug/613254"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/61007"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-119"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2006-7234
Vulnerability from fkie_nvd - Published: 2008-10-27 17:21 - Updated: 2025-04-09 00:30
Severity ?
Summary
Untrusted search path vulnerability in Lynx before 2.8.6rel.4 allows local users to execute arbitrary code via malicious (1) .mailcap and (2) mime.types files in the current working directory.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| lynx | lynx | * | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:lynx:lynx:*:rel3:*:*:*:*:*:*",
"matchCriteriaId": "213A4462-AB03-4FC0-81C2-D899067F9F9C",
"versionEndIncluding": "2.8.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.1:*:*:*:*:*:*",
"matchCriteriaId": "862A5445-8315-4A2C-8695-E161449C24D3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.10:*:*:*:*:*:*",
"matchCriteriaId": "C9D4E577-AE2E-415C-A270-C0114A73893B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.11:*:*:*:*:*:*",
"matchCriteriaId": "AD2ECEE2-8458-421E-AEB5-39ED85B968A8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.12:*:*:*:*:*:*",
"matchCriteriaId": "B570E564-ED10-4871-ACB9-5663A2872E90",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.13:*:*:*:*:*:*",
"matchCriteriaId": "A4572C92-B30D-40FE-8EB2-614BB85D4D9D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.14:*:*:*:*:*:*",
"matchCriteriaId": "B4316D3B-6F6F-4DA3-89D5-191830BD731D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.15:*:*:*:*:*:*",
"matchCriteriaId": "531CF003-9A81-459F-972F-8D01660AEA34",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.16:*:*:*:*:*:*",
"matchCriteriaId": "C376BE36-FD58-4F28-8AD7-95E7AB640568",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.17:*:*:*:*:*:*",
"matchCriteriaId": "8007AF95-DD87-4711-A2A7-3A680BB06BF3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.18:*:*:*:*:*:*",
"matchCriteriaId": "F30D66EF-D058-4138-B85D-C5292401B1F6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.19:*:*:*:*:*:*",
"matchCriteriaId": "63FC230B-EA6D-4DF1-AA47-4CDE062D4307",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.2:*:*:*:*:*:*",
"matchCriteriaId": "13E500F0-E922-4F48-A4F1-B626D7CCC71B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.20:*:*:*:*:*:*",
"matchCriteriaId": "043D6299-0541-42A8-B25B-86AAFC8F02D5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.21:*:*:*:*:*:*",
"matchCriteriaId": "3705A24D-622A-46DC-971E-F5B9A1C22924",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.22:*:*:*:*:*:*",
"matchCriteriaId": "3F885BED-CEE1-4EA0-9CC3-AA206D93EC11",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.23:*:*:*:*:*:*",
"matchCriteriaId": "3972751B-45FF-44F7-B43D-63CEF5A8E420",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.24:*:*:*:*:*:*",
"matchCriteriaId": "EF239E93-FC86-496C-B188-AE8E365E4830",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.26:*:*:*:*:*:*",
"matchCriteriaId": "EA2470E7-8D3D-4CD1-96B8-CDAC2E286883",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.27:*:*:*:*:*:*",
"matchCriteriaId": "A3CC6ED2-2163-4652-AF6E-97E90733EF00",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.28:*:*:*:*:*:*",
"matchCriteriaId": "219E37CC-7624-4F0F-B80C-CE8A751D6213",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.29:*:*:*:*:*:*",
"matchCriteriaId": "F8797B26-20B9-495C-B7F4-0AD152B4C22C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.3:*:*:*:*:*:*",
"matchCriteriaId": "1DC8FB1A-AA96-488F-8DB1-703E74F3745D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.4:*:*:*:*:*:*",
"matchCriteriaId": "4B90FBE5-6905-4699-B167-4622A6D2A328",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.5:*:*:*:*:*:*",
"matchCriteriaId": "EBD9FCE8-DE5E-4558-816B-B6D4D1863827",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.6:*:*:*:*:*:*",
"matchCriteriaId": "6C175A7B-A967-493C-83BF-EC80579C50E8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.7:*:*:*:*:*:*",
"matchCriteriaId": "4DC670C5-EE53-4D14-ACA0-E353EC760003",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.8:*:*:*:*:*:*",
"matchCriteriaId": "B3D922E9-A39D-436C-8AC7-8B64BE68A1A8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.9:*:*:*:*:*:*",
"matchCriteriaId": "CF8BE003-9D90-4DA4-B3F0-DD7C2514857B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.1:*:*:*:*:*:*",
"matchCriteriaId": "C74E230F-B0F6-49BB-9DD6-CF4C0800BB28",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.10:*:*:*:*:*:*",
"matchCriteriaId": "7CA8ABB8-7894-438C-8EF7-F6043B8CC69D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.11:*:*:*:*:*:*",
"matchCriteriaId": "48820A7C-C55A-4B73-A837-2FD7BDEAA8A1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.2:*:*:*:*:*:*",
"matchCriteriaId": "63945073-0E2F-483F-AF88-2EC99127852D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.3:*:*:*:*:*:*",
"matchCriteriaId": "98605AD2-A416-4223-AF4F-0855C2C9AC67",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.4:*:*:*:*:*:*",
"matchCriteriaId": "44B18544-1B8B-4BAF-A82F-2A070190CE0B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.5:*:*:*:*:*:*",
"matchCriteriaId": "81AFD48B-EB2D-4A76-9421-3DE8E6E6C3A2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.6:*:*:*:*:*:*",
"matchCriteriaId": "1DA4550C-5EC5-436C-9F18-BEC1AB6CEC21",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.7:*:*:*:*:*:*",
"matchCriteriaId": "79EF180E-5E02-4761-86D3-334BA5A46C3F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.8:*:*:*:*:*:*",
"matchCriteriaId": "8AB68958-C147-4B9E-8B84-7D04FDBF54F9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.9:*:*:*:*:*:*",
"matchCriteriaId": "260D7B17-8357-4B3F-B8EC-A40D5157BBE6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:rel.1:*:*:*:*:*:*",
"matchCriteriaId": "3C12D052-763F-4A5F-9CFC-E08A9706033F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:rel.2:*:*:*:*:*:*",
"matchCriteriaId": "5DA73148-3C3E-4501-AE45-02FC3FB487BF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.1:*:*:*:*:*:*",
"matchCriteriaId": "D59F1BD2-EA67-481A-935A-6FC0D07C4F81",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.10:*:*:*:*:*:*",
"matchCriteriaId": "81FA0F2C-A817-467A-BCA8-C9207EBD538A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.11:*:*:*:*:*:*",
"matchCriteriaId": "FB8F0E29-88BC-4CF0-9843-F5A32DB27F32",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.12:*:*:*:*:*:*",
"matchCriteriaId": "EF93CE9B-3E63-40BE-8CCC-6C57A667DB92",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.13:*:*:*:*:*:*",
"matchCriteriaId": "DA42F704-D1EF-4855-8679-10DCCF661420",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.14:*:*:*:*:*:*",
"matchCriteriaId": "4921C912-5DC0-45B6-9748-81ED0BA83D81",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.15:*:*:*:*:*:*",
"matchCriteriaId": "04CCEA26-8F53-4F0A-893A-C9E8F4058366",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.16:*:*:*:*:*:*",
"matchCriteriaId": "FA1A5BBB-6F3E-4C91-9E7A-54BF5EB79921",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.17:*:*:*:*:*:*",
"matchCriteriaId": "3BD24C16-6BF9-438C-B124-E1394D4E67E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.18:*:*:*:*:*:*",
"matchCriteriaId": "BC302B05-153A-46B8-84EF-975286369E9B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.19:*:*:*:*:*:*",
"matchCriteriaId": "DEF3A639-D731-4E0D-8D43-9960AA998F20",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.2:*:*:*:*:*:*",
"matchCriteriaId": "9CA2172E-DD08-435F-BA3C-D84287F307B7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.20:*:*:*:*:*:*",
"matchCriteriaId": "F1F23869-E42A-41F3-AC39-7AA24CD43EB7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.21:*:*:*:*:*:*",
"matchCriteriaId": "BE45B4F4-831B-46C4-94B0-B5A2E552FB9A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.22:*:*:*:*:*:*",
"matchCriteriaId": "A732341A-F6BD-4E98-A187-0E0CBA2DE003",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.23:*:*:*:*:*:*",
"matchCriteriaId": "4BF68D4F-C79D-48E8-A77E-5A6C1B773EDA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.24:*:*:*:*:*:*",
"matchCriteriaId": "7EBA2266-7A0F-46B4-8B3C-1F233C57AE30",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.25:*:*:*:*:*:*",
"matchCriteriaId": "0CA8BEC0-9B09-4252-A663-12D7527F42B5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.26:*:*:*:*:*:*",
"matchCriteriaId": "D5EC9A87-B380-4C3E-ABFB-C31ABC0E7683",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.3:*:*:*:*:*:*",
"matchCriteriaId": "618B6F91-C5DC-44DE-8B04-1B8F458E6F6F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.4:*:*:*:*:*:*",
"matchCriteriaId": "1EAE8DDC-05C3-4C02-A193-614C901FF70E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.5:*:*:*:*:*:*",
"matchCriteriaId": "E523B829-5BCE-4B23-B4CA-96EC164E630F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.6:*:*:*:*:*:*",
"matchCriteriaId": "E36A8455-89AF-4996-900A-DCA537E5967E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.7:*:*:*:*:*:*",
"matchCriteriaId": "9AA632B2-2508-465C-B25A-1F14CC94CE26",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.8:*:*:*:*:*:*",
"matchCriteriaId": "038E89B8-3486-4D39-9FF5-1638092CB6F6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.9:*:*:*:*:*:*",
"matchCriteriaId": "81D5CDA1-D682-49CB-A19C-754159533866",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.1:*:*:*:*:*:*",
"matchCriteriaId": "12D4953F-F735-4D99-81FA-B120F2CD6187",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.10:*:*:*:*:*:*",
"matchCriteriaId": "6DE542DF-5FA2-4C98-AE7A-98BEDCD32C4F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.11:*:*:*:*:*:*",
"matchCriteriaId": "E2875C64-5DE3-4612-8A2D-07368AE0E613",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.2:*:*:*:*:*:*",
"matchCriteriaId": "BEB48407-4A1C-4A2A-91AB-A7F2469C643D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.3:*:*:*:*:*:*",
"matchCriteriaId": "770E6D06-A8E8-46EC-8ECB-E5034A3ACDD0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.4:*:*:*:*:*:*",
"matchCriteriaId": "BB2C468C-053D-4516-BBD5-097D9CA3C6CF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.5:*:*:*:*:*:*",
"matchCriteriaId": "0BFA48A1-D025-4CB7-9D7A-3C3D3F84C344",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.6:*:*:*:*:*:*",
"matchCriteriaId": "2952132D-CE4A-4D85-AB0F-321DD73CB8AC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.7:*:*:*:*:*:*",
"matchCriteriaId": "F0DE6D59-D33B-499E-93C4-D57D821055DD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.8:*:*:*:*:*:*",
"matchCriteriaId": "3DA6C82E-497A-4E68-A019-76732FCDE79D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.9:*:*:*:*:*:*",
"matchCriteriaId": "A51E8735-1187-478B-A27E-E172A75D1E30",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:rel.1:*:*:*:*:*:*",
"matchCriteriaId": "D4D7D16D-2DA0-4052-9B91-942900CC24BB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.1:*:*:*:*:*:*",
"matchCriteriaId": "EBE97229-F7E7-4767-86B2-61066B69D30B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.10:*:*:*:*:*:*",
"matchCriteriaId": "AAF905CD-FB1F-46CB-A432-625A8F050223",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.11:*:*:*:*:*:*",
"matchCriteriaId": "556F1631-93C7-48EA-A6C2-E8E3E6ACBB85",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.12:*:*:*:*:*:*",
"matchCriteriaId": "C50B29E2-3837-499A-BC2E-813C2BB92DE6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.13:*:*:*:*:*:*",
"matchCriteriaId": "BFF73BCA-644B-4091-A6F9-3C0B4F1C220C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.14:*:*:*:*:*:*",
"matchCriteriaId": "11450D21-1F22-4314-9C97-13F39F152156",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.15:*:*:*:*:*:*",
"matchCriteriaId": "087425C2-7A81-4B0F-AE36-A77E6913876B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.16:*:*:*:*:*:*",
"matchCriteriaId": "5A6E40AF-1674-4E37-A175-BABB6CFE222C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.17:*:*:*:*:*:*",
"matchCriteriaId": "4CADE41F-8802-4EE2-9B49-C461DCA522B8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.18:*:*:*:*:*:*",
"matchCriteriaId": "39549DA6-1DE4-4760-BECE-E9C207836DD7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.19:*:*:*:*:*:*",
"matchCriteriaId": "301D4516-8280-4FBE-8E40-6ACF1FA6EDAB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.2:*:*:*:*:*:*",
"matchCriteriaId": "8B9FDC9F-9FBB-496E-BA0A-D45666BD23EB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.20:*:*:*:*:*:*",
"matchCriteriaId": "C4430E79-886C-4987-BF6C-3A9BC107C488",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.21:*:*:*:*:*:*",
"matchCriteriaId": "8F45A77D-1185-4E63-B387-C4EAE44A2043",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.22:*:*:*:*:*:*",
"matchCriteriaId": "9362AB7A-7564-4553-88EA-EC2501D2C5D9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.23:*:*:*:*:*:*",
"matchCriteriaId": "51033A6B-71FD-4392-B162-0C2C1D15062E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.3:*:*:*:*:*:*",
"matchCriteriaId": "0DAE9201-C90D-4764-B533-3DBB3FDC8E5E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.4:*:*:*:*:*:*",
"matchCriteriaId": "20F61B2C-AC76-4E7A-8675-CC7075441274",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.5:*:*:*:*:*:*",
"matchCriteriaId": "839CE73D-D363-46C0-A7D8-0E0970C9D960",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.6:*:*:*:*:*:*",
"matchCriteriaId": "609D3A11-7245-4347-94B6-349D665BBA1A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.7:*:*:*:*:*:*",
"matchCriteriaId": "0CF2C0B8-8DBD-44E7-A247-46FBCA6DE606",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.8:*:*:*:*:*:*",
"matchCriteriaId": "22CF3A40-D17E-47AD-A109-20A476238BA7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.9:*:*:*:*:*:*",
"matchCriteriaId": "7F5C7A93-25F2-4429-9278-46F990ECB310",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:pre1:*:*:*:*:*:*",
"matchCriteriaId": "9619AB62-947D-4DD8-9870-245DF1A6BE94",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:pre2:*:*:*:*:*:*",
"matchCriteriaId": "133925D5-A33B-4B85-A834-6A187C186250",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:pre3:*:*:*:*:*:*",
"matchCriteriaId": "445D1083-FF37-466F-97FA-2B757692BA8F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:pre4:*:*:*:*:*:*",
"matchCriteriaId": "6CAD635C-FAB2-4BB1-AFBA-FC6A692C58B9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:pre5:*:*:*:*:*:*",
"matchCriteriaId": "A18F33E1-52BC-4A6F-99C6-02777FBE2D3E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:pre6:*:*:*:*:*:*",
"matchCriteriaId": "7911DA89-EA53-4E8C-87AE-B0E14EDF0040",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:pre7:*:*:*:*:*:*",
"matchCriteriaId": "83F2DC55-5D05-4336-8090-4563847819D0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:pre8:*:*:*:*:*:*",
"matchCriteriaId": "628F3D87-9FCE-4BF5-8381-01E3181464B7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:rel1:*:*:*:*:*:*",
"matchCriteriaId": "D53E25C2-BE29-4123-8AC0-FFD4760C7D0A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev1:*:*:*:*:*:*",
"matchCriteriaId": "4C0A1E2A-6846-43B7-89F7-EAFE87F23EB6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev10:*:*:*:*:*:*",
"matchCriteriaId": "79B7CD30-4DFA-4516-BFCE-D1628C4CB9F5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev11:*:*:*:*:*:*",
"matchCriteriaId": "FC834555-D75D-4A46-847B-6E8531A805CE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev12:*:*:*:*:*:*",
"matchCriteriaId": "6D08BCAF-B83C-426B-A826-5D78D7D22C4D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev13:*:*:*:*:*:*",
"matchCriteriaId": "960F3E0F-7C73-4D69-86DB-1307CF0B7F41",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev14:*:*:*:*:*:*",
"matchCriteriaId": "C4E41961-28B3-4CA1-98BE-CDDAC3E12E07",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev15:*:*:*:*:*:*",
"matchCriteriaId": "5569496E-BA89-40B6-A5C9-E8A8640F9606",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev16:*:*:*:*:*:*",
"matchCriteriaId": "1FF48553-45A3-449F-BAB1-B2A77352237B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev17:*:*:*:*:*:*",
"matchCriteriaId": "AF350141-E5CC-451E-A05A-AD5EA160D3BC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev18:*:*:*:*:*:*",
"matchCriteriaId": "D6739C37-A79B-49B5-B2FD-357F6B05E0CD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev19:*:*:*:*:*:*",
"matchCriteriaId": "56F72A7B-217D-4EAF-8187-F8C59CF891E3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev2:*:*:*:*:*:*",
"matchCriteriaId": "49BF5E5B-2AE0-4BBF-AF13-0E4F7E284A3E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev20:*:*:*:*:*:*",
"matchCriteriaId": "538BD607-D360-4436-919F-00F0735F2F63",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev21:*:*:*:*:*:*",
"matchCriteriaId": "3B07CAD3-7F2F-4549-AF28-A5CE69CB2038",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev3:*:*:*:*:*:*",
"matchCriteriaId": "692D1DAF-46EE-4782-9B03-13D258C8EF5E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev4:*:*:*:*:*:*",
"matchCriteriaId": "B31CE784-35EC-45C6-9D06-9577C66B051A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev5:*:*:*:*:*:*",
"matchCriteriaId": "6D94E3FF-08E2-42D0-8AB9-4FFC4C9834D3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev6:*:*:*:*:*:*",
"matchCriteriaId": "F20427C6-347C-4E1E-B983-7DCDF2D72ABF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev7:*:*:*:*:*:*",
"matchCriteriaId": "8EE07315-C850-4181-A531-31220BFF9A0D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev8:*:*:*:*:*:*",
"matchCriteriaId": "C7982641-B75F-454F-834F-EAF3BA897C38",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev9:*:*:*:*:*:*",
"matchCriteriaId": "04EBC013-48E1-407C-A8E5-5F30CF11AFD7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:pre.1:*:*:*:*:*:*",
"matchCriteriaId": "FC3E52FF-3CD4-4A01-8F89-584563A06352",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:pre.2:*:*:*:*:*:*",
"matchCriteriaId": "7C9C8B8B-CE71-4CB0-8C10-FBC3172B9269",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:pre.3:*:*:*:*:*:*",
"matchCriteriaId": "66889F07-374C-4B9E-8C98-4578C5173A7B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:pre.4:*:*:*:*:*:*",
"matchCriteriaId": "12F6F8F4-298D-460E-AC41-29FB448B96D7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:pre.5:*:*:*:*:*:*",
"matchCriteriaId": "FCC527A6-4804-47B7-9A5A-61402431BAA9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:rel.1:*:*:*:*:*:*",
"matchCriteriaId": "76FBFA8F-B2EF-489E-A832-08DC1BA091AD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.1:*:*:*:*:*:*",
"matchCriteriaId": "59FE42C9-ABE6-4622-8AAE-D58C5C3060B1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.10:*:*:*:*:*:*",
"matchCriteriaId": "0D31A992-F02D-4F76-A6B5-F3A8C4BD1040",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.11:*:*:*:*:*:*",
"matchCriteriaId": "4D03BC65-AE7E-4AB1-805F-7BF3A15FE035",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.12:*:*:*:*:*:*",
"matchCriteriaId": "633F1F2A-4F8A-4C5F-9D95-B806CBC5B74C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.13:*:*:*:*:*:*",
"matchCriteriaId": "80F84D1E-3C9F-48A6-BED2-F3669B8EC819",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.14:*:*:*:*:*:*",
"matchCriteriaId": "FA979A2C-FBA8-4A86-8830-C0824AF54C22",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.15:*:*:*:*:*:*",
"matchCriteriaId": "9EF93004-261D-4C40-A288-C029A3054E4F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.16:*:*:*:*:*:*",
"matchCriteriaId": "F96D987C-B89F-48F8-BD22-0EA7E845B920",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.17:*:*:*:*:*:*",
"matchCriteriaId": "D2BA9934-E4AC-43BF-B860-3C60B5F18DB3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.2:*:*:*:*:*:*",
"matchCriteriaId": "0990275A-E44E-43F9-9164-B1979719BC9E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.3:*:*:*:*:*:*",
"matchCriteriaId": "C0D186F7-CDBE-415B-AB26-146BA8F3FC7F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.4:*:*:*:*:*:*",
"matchCriteriaId": "B0A4224C-A1B5-4BEB-9B4A-78CD0243E669",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.5:*:*:*:*:*:*",
"matchCriteriaId": "5E733E5C-8272-4D18-99C4-2862728F7E88",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.6:*:*:*:*:*:*",
"matchCriteriaId": "386FC0D1-38F1-491B-949C-65138E864C18",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.7:*:*:*:*:*:*",
"matchCriteriaId": "2C2EF1AA-77DF-424F-9473-4831ACE3F47E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.8:*:*:*:*:*:*",
"matchCriteriaId": "2436626C-6214-4D73-923C-4BBD9148AE19",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.9:*:*:*:*:*:*",
"matchCriteriaId": "4F59D4B7-77A5-487B-B9D7-ACCDC25BE03B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:pre.1:*:*:*:*:*:*",
"matchCriteriaId": "A311B404-6815-434F-9948-971E316AB08E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:pre.2:*:*:*:*:*:*",
"matchCriteriaId": "CF21426F-0A83-4CAA-B8FE-5D1140840792",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:pre.3:*:*:*:*:*:*",
"matchCriteriaId": "A440FBED-FBE9-499C-AAEE-A476526B3862",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:pre.4:*:*:*:*:*:*",
"matchCriteriaId": "8BED0DE4-DC20-44FF-A491-E22A59BED1C5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:pre.5:*:*:*:*:*:*",
"matchCriteriaId": "FB00EE41-8071-46BB-B783-F37B25072C43",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:rel.1:*:*:*:*:*:*",
"matchCriteriaId": "4E00B7BF-21AC-4E32-96ED-641A39C79326",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev1:*:*:*:*:*:*",
"matchCriteriaId": "ABB39A6E-973C-429D-9BAA-0B7A377F4679",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev10:*:*:*:*:*:*",
"matchCriteriaId": "C78F3CA3-2C11-4019-BF9D-2B2A3149BC53",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev11:*:*:*:*:*:*",
"matchCriteriaId": "210DDCD6-36E2-4B3F-9765-D7F3C8DB49E7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev12:*:*:*:*:*:*",
"matchCriteriaId": "64BCE913-DB20-40A7-9BC2-984541F3535C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev13:*:*:*:*:*:*",
"matchCriteriaId": "2EFD0B54-67F6-4149-AF8A-191C550EF088",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev14:*:*:*:*:*:*",
"matchCriteriaId": "19C5642E-037F-4E75-8949-255F1368596D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev15:*:*:*:*:*:*",
"matchCriteriaId": "A8291528-45B3-481F-9A3B-332601544A15",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev2:*:*:*:*:*:*",
"matchCriteriaId": "C45DF1C4-4B67-4773-BF03-E15C18CEFA1D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev3:*:*:*:*:*:*",
"matchCriteriaId": "962E0199-2154-4F10-A58E-753FA840A631",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev4:*:*:*:*:*:*",
"matchCriteriaId": "F16BA322-D764-4648-BB7C-3AD5E4F76CFB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev5:*:*:*:*:*:*",
"matchCriteriaId": "FA8D13D1-56BF-4237-A86F-9C270992D047",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev6:*:*:*:*:*:*",
"matchCriteriaId": "1A1A3227-4F30-49F1-947D-E20D7A4A4A36",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev7:*:*:*:*:*:*",
"matchCriteriaId": "E77E1F5A-8BEC-4126-98DB-25F53CD95085",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev8:*:*:*:*:*:*",
"matchCriteriaId": "F044F727-1BA7-4307-B237-48B5D0127CCB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev9:*:*:*:*:*:*",
"matchCriteriaId": "B65566DF-BEE2-4808-A03E-685B931EF827",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:rel1:*:*:*:*:*:*",
"matchCriteriaId": "A7FE0B3F-B43A-4236-BF3D-1BFEBD49D019",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:rel2:*:*:*:*:*:*",
"matchCriteriaId": "AFACAE6B-FF04-4F9E-8DBF-A29F03D7C09D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Untrusted search path vulnerability in Lynx before 2.8.6rel.4 allows local users to execute arbitrary code via malicious (1) .mailcap and (2) mime.types files in the current working directory."
},
{
"lang": "es",
"value": "Vulnerabilidad de ruta de b\u00fasqueda no confiable en Lynx anterior a 2.8.6rel.4; permite a usuarios locales ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de los ficheros maliciosos (1) .mailcap y (2) mime.types en el directorio de trabajo actual."
}
],
"evaluatorSolution": "Patch Information - http://lynx.isc.org/lynx2.8.6/patches/",
"id": "CVE-2006-7234",
"lastModified": "2025-04-09T00:30:58.490",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.6,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": true,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2008-10-27T17:21:27.007",
"references": [
{
"source": "secalert@redhat.com",
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=396949"
},
{
"source": "secalert@redhat.com",
"url": "http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/32407"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/32416"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/33568"
},
{
"source": "secalert@redhat.com",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:217"
},
{
"source": "secalert@redhat.com",
"url": "http://www.openwall.com/lists/oss-security/2008/10/25/3"
},
{
"source": "secalert@redhat.com",
"url": "http://www.redhat.com/support/errata/RHSA-2008-0965.html"
},
{
"source": "secalert@redhat.com",
"url": "http://www.securityfocus.com/bid/31917"
},
{
"source": "secalert@redhat.com",
"url": "http://www.securitytracker.com/id?1021107"
},
{
"source": "secalert@redhat.com",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=214205"
},
{
"source": "secalert@redhat.com",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46132"
},
{
"source": "secalert@redhat.com",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9719"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=396949"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/32407"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/32416"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/33568"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:217"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.openwall.com/lists/oss-security/2008/10/25/3"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.redhat.com/support/errata/RHSA-2008-0965.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/31917"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securitytracker.com/id?1021107"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=214205"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46132"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9719"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2008-4690
Vulnerability from fkie_nvd - Published: 2008-10-22 18:00 - Updated: 2025-04-09 00:30
Severity ?
Summary
lynx 2.8.6dev.15 and earlier, when advanced mode is enabled and lynx is configured as a URL handler, allows remote attackers to execute arbitrary commands via a crafted lynxcgi: URL, a related issue to CVE-2005-2929. NOTE: this might only be a vulnerability in limited deployments that have defined a lynxcgi: handler.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| lynx | lynx | * | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.1 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.2 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.3 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.4 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.5 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 | |
| lynx | lynx | 2.8.6 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:lynx:lynx:*:dev15:*:*:*:*:*:*",
"matchCriteriaId": "7613ABE2-175E-4A48-9CEC-D3662A6EB183",
"versionEndIncluding": "2.8.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.1:*:*:*:*:*:*",
"matchCriteriaId": "862A5445-8315-4A2C-8695-E161449C24D3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.10:*:*:*:*:*:*",
"matchCriteriaId": "C9D4E577-AE2E-415C-A270-C0114A73893B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.11:*:*:*:*:*:*",
"matchCriteriaId": "AD2ECEE2-8458-421E-AEB5-39ED85B968A8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.12:*:*:*:*:*:*",
"matchCriteriaId": "B570E564-ED10-4871-ACB9-5663A2872E90",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.13:*:*:*:*:*:*",
"matchCriteriaId": "A4572C92-B30D-40FE-8EB2-614BB85D4D9D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.14:*:*:*:*:*:*",
"matchCriteriaId": "B4316D3B-6F6F-4DA3-89D5-191830BD731D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.15:*:*:*:*:*:*",
"matchCriteriaId": "531CF003-9A81-459F-972F-8D01660AEA34",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.16:*:*:*:*:*:*",
"matchCriteriaId": "C376BE36-FD58-4F28-8AD7-95E7AB640568",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.17:*:*:*:*:*:*",
"matchCriteriaId": "8007AF95-DD87-4711-A2A7-3A680BB06BF3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.18:*:*:*:*:*:*",
"matchCriteriaId": "F30D66EF-D058-4138-B85D-C5292401B1F6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.19:*:*:*:*:*:*",
"matchCriteriaId": "63FC230B-EA6D-4DF1-AA47-4CDE062D4307",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.2:*:*:*:*:*:*",
"matchCriteriaId": "13E500F0-E922-4F48-A4F1-B626D7CCC71B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.20:*:*:*:*:*:*",
"matchCriteriaId": "043D6299-0541-42A8-B25B-86AAFC8F02D5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.21:*:*:*:*:*:*",
"matchCriteriaId": "3705A24D-622A-46DC-971E-F5B9A1C22924",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.22:*:*:*:*:*:*",
"matchCriteriaId": "3F885BED-CEE1-4EA0-9CC3-AA206D93EC11",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.23:*:*:*:*:*:*",
"matchCriteriaId": "3972751B-45FF-44F7-B43D-63CEF5A8E420",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.24:*:*:*:*:*:*",
"matchCriteriaId": "EF239E93-FC86-496C-B188-AE8E365E4830",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.26:*:*:*:*:*:*",
"matchCriteriaId": "EA2470E7-8D3D-4CD1-96B8-CDAC2E286883",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.27:*:*:*:*:*:*",
"matchCriteriaId": "A3CC6ED2-2163-4652-AF6E-97E90733EF00",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.28:*:*:*:*:*:*",
"matchCriteriaId": "219E37CC-7624-4F0F-B80C-CE8A751D6213",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.29:*:*:*:*:*:*",
"matchCriteriaId": "F8797B26-20B9-495C-B7F4-0AD152B4C22C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.3:*:*:*:*:*:*",
"matchCriteriaId": "1DC8FB1A-AA96-488F-8DB1-703E74F3745D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.4:*:*:*:*:*:*",
"matchCriteriaId": "4B90FBE5-6905-4699-B167-4622A6D2A328",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.5:*:*:*:*:*:*",
"matchCriteriaId": "EBD9FCE8-DE5E-4558-816B-B6D4D1863827",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.6:*:*:*:*:*:*",
"matchCriteriaId": "6C175A7B-A967-493C-83BF-EC80579C50E8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.7:*:*:*:*:*:*",
"matchCriteriaId": "4DC670C5-EE53-4D14-ACA0-E353EC760003",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.8:*:*:*:*:*:*",
"matchCriteriaId": "B3D922E9-A39D-436C-8AC7-8B64BE68A1A8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:dev.9:*:*:*:*:*:*",
"matchCriteriaId": "CF8BE003-9D90-4DA4-B3F0-DD7C2514857B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.1:*:*:*:*:*:*",
"matchCriteriaId": "C74E230F-B0F6-49BB-9DD6-CF4C0800BB28",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.10:*:*:*:*:*:*",
"matchCriteriaId": "7CA8ABB8-7894-438C-8EF7-F6043B8CC69D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.11:*:*:*:*:*:*",
"matchCriteriaId": "48820A7C-C55A-4B73-A837-2FD7BDEAA8A1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.2:*:*:*:*:*:*",
"matchCriteriaId": "63945073-0E2F-483F-AF88-2EC99127852D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.3:*:*:*:*:*:*",
"matchCriteriaId": "98605AD2-A416-4223-AF4F-0855C2C9AC67",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.4:*:*:*:*:*:*",
"matchCriteriaId": "44B18544-1B8B-4BAF-A82F-2A070190CE0B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.5:*:*:*:*:*:*",
"matchCriteriaId": "81AFD48B-EB2D-4A76-9421-3DE8E6E6C3A2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.6:*:*:*:*:*:*",
"matchCriteriaId": "1DA4550C-5EC5-436C-9F18-BEC1AB6CEC21",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.7:*:*:*:*:*:*",
"matchCriteriaId": "79EF180E-5E02-4761-86D3-334BA5A46C3F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.8:*:*:*:*:*:*",
"matchCriteriaId": "8AB68958-C147-4B9E-8B84-7D04FDBF54F9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:pre.9:*:*:*:*:*:*",
"matchCriteriaId": "260D7B17-8357-4B3F-B8EC-A40D5157BBE6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:rel.1:*:*:*:*:*:*",
"matchCriteriaId": "3C12D052-763F-4A5F-9CFC-E08A9706033F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.1:rel.2:*:*:*:*:*:*",
"matchCriteriaId": "5DA73148-3C3E-4501-AE45-02FC3FB487BF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.1:*:*:*:*:*:*",
"matchCriteriaId": "D59F1BD2-EA67-481A-935A-6FC0D07C4F81",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.10:*:*:*:*:*:*",
"matchCriteriaId": "81FA0F2C-A817-467A-BCA8-C9207EBD538A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.11:*:*:*:*:*:*",
"matchCriteriaId": "FB8F0E29-88BC-4CF0-9843-F5A32DB27F32",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.12:*:*:*:*:*:*",
"matchCriteriaId": "EF93CE9B-3E63-40BE-8CCC-6C57A667DB92",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.13:*:*:*:*:*:*",
"matchCriteriaId": "DA42F704-D1EF-4855-8679-10DCCF661420",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.14:*:*:*:*:*:*",
"matchCriteriaId": "4921C912-5DC0-45B6-9748-81ED0BA83D81",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.15:*:*:*:*:*:*",
"matchCriteriaId": "04CCEA26-8F53-4F0A-893A-C9E8F4058366",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.16:*:*:*:*:*:*",
"matchCriteriaId": "FA1A5BBB-6F3E-4C91-9E7A-54BF5EB79921",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.17:*:*:*:*:*:*",
"matchCriteriaId": "3BD24C16-6BF9-438C-B124-E1394D4E67E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.18:*:*:*:*:*:*",
"matchCriteriaId": "BC302B05-153A-46B8-84EF-975286369E9B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.19:*:*:*:*:*:*",
"matchCriteriaId": "DEF3A639-D731-4E0D-8D43-9960AA998F20",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.2:*:*:*:*:*:*",
"matchCriteriaId": "9CA2172E-DD08-435F-BA3C-D84287F307B7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.20:*:*:*:*:*:*",
"matchCriteriaId": "F1F23869-E42A-41F3-AC39-7AA24CD43EB7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.21:*:*:*:*:*:*",
"matchCriteriaId": "BE45B4F4-831B-46C4-94B0-B5A2E552FB9A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.22:*:*:*:*:*:*",
"matchCriteriaId": "A732341A-F6BD-4E98-A187-0E0CBA2DE003",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.23:*:*:*:*:*:*",
"matchCriteriaId": "4BF68D4F-C79D-48E8-A77E-5A6C1B773EDA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.24:*:*:*:*:*:*",
"matchCriteriaId": "7EBA2266-7A0F-46B4-8B3C-1F233C57AE30",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.25:*:*:*:*:*:*",
"matchCriteriaId": "0CA8BEC0-9B09-4252-A663-12D7527F42B5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.26:*:*:*:*:*:*",
"matchCriteriaId": "D5EC9A87-B380-4C3E-ABFB-C31ABC0E7683",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.3:*:*:*:*:*:*",
"matchCriteriaId": "618B6F91-C5DC-44DE-8B04-1B8F458E6F6F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.4:*:*:*:*:*:*",
"matchCriteriaId": "1EAE8DDC-05C3-4C02-A193-614C901FF70E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.5:*:*:*:*:*:*",
"matchCriteriaId": "E523B829-5BCE-4B23-B4CA-96EC164E630F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.6:*:*:*:*:*:*",
"matchCriteriaId": "E36A8455-89AF-4996-900A-DCA537E5967E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.7:*:*:*:*:*:*",
"matchCriteriaId": "9AA632B2-2508-465C-B25A-1F14CC94CE26",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.8:*:*:*:*:*:*",
"matchCriteriaId": "038E89B8-3486-4D39-9FF5-1638092CB6F6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:dev.9:*:*:*:*:*:*",
"matchCriteriaId": "81D5CDA1-D682-49CB-A19C-754159533866",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.1:*:*:*:*:*:*",
"matchCriteriaId": "12D4953F-F735-4D99-81FA-B120F2CD6187",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.10:*:*:*:*:*:*",
"matchCriteriaId": "6DE542DF-5FA2-4C98-AE7A-98BEDCD32C4F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.11:*:*:*:*:*:*",
"matchCriteriaId": "E2875C64-5DE3-4612-8A2D-07368AE0E613",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.2:*:*:*:*:*:*",
"matchCriteriaId": "BEB48407-4A1C-4A2A-91AB-A7F2469C643D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.3:*:*:*:*:*:*",
"matchCriteriaId": "770E6D06-A8E8-46EC-8ECB-E5034A3ACDD0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.4:*:*:*:*:*:*",
"matchCriteriaId": "BB2C468C-053D-4516-BBD5-097D9CA3C6CF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.5:*:*:*:*:*:*",
"matchCriteriaId": "0BFA48A1-D025-4CB7-9D7A-3C3D3F84C344",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.6:*:*:*:*:*:*",
"matchCriteriaId": "2952132D-CE4A-4D85-AB0F-321DD73CB8AC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.7:*:*:*:*:*:*",
"matchCriteriaId": "F0DE6D59-D33B-499E-93C4-D57D821055DD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.8:*:*:*:*:*:*",
"matchCriteriaId": "3DA6C82E-497A-4E68-A019-76732FCDE79D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:pre.9:*:*:*:*:*:*",
"matchCriteriaId": "A51E8735-1187-478B-A27E-E172A75D1E30",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.2:rel.1:*:*:*:*:*:*",
"matchCriteriaId": "D4D7D16D-2DA0-4052-9B91-942900CC24BB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.1:*:*:*:*:*:*",
"matchCriteriaId": "EBE97229-F7E7-4767-86B2-61066B69D30B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.10:*:*:*:*:*:*",
"matchCriteriaId": "AAF905CD-FB1F-46CB-A432-625A8F050223",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.11:*:*:*:*:*:*",
"matchCriteriaId": "556F1631-93C7-48EA-A6C2-E8E3E6ACBB85",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.12:*:*:*:*:*:*",
"matchCriteriaId": "C50B29E2-3837-499A-BC2E-813C2BB92DE6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.13:*:*:*:*:*:*",
"matchCriteriaId": "BFF73BCA-644B-4091-A6F9-3C0B4F1C220C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.14:*:*:*:*:*:*",
"matchCriteriaId": "11450D21-1F22-4314-9C97-13F39F152156",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.15:*:*:*:*:*:*",
"matchCriteriaId": "087425C2-7A81-4B0F-AE36-A77E6913876B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.16:*:*:*:*:*:*",
"matchCriteriaId": "5A6E40AF-1674-4E37-A175-BABB6CFE222C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.17:*:*:*:*:*:*",
"matchCriteriaId": "4CADE41F-8802-4EE2-9B49-C461DCA522B8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.18:*:*:*:*:*:*",
"matchCriteriaId": "39549DA6-1DE4-4760-BECE-E9C207836DD7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.19:*:*:*:*:*:*",
"matchCriteriaId": "301D4516-8280-4FBE-8E40-6ACF1FA6EDAB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.2:*:*:*:*:*:*",
"matchCriteriaId": "8B9FDC9F-9FBB-496E-BA0A-D45666BD23EB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.20:*:*:*:*:*:*",
"matchCriteriaId": "C4430E79-886C-4987-BF6C-3A9BC107C488",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.21:*:*:*:*:*:*",
"matchCriteriaId": "8F45A77D-1185-4E63-B387-C4EAE44A2043",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.22:*:*:*:*:*:*",
"matchCriteriaId": "9362AB7A-7564-4553-88EA-EC2501D2C5D9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.23:*:*:*:*:*:*",
"matchCriteriaId": "51033A6B-71FD-4392-B162-0C2C1D15062E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.3:*:*:*:*:*:*",
"matchCriteriaId": "0DAE9201-C90D-4764-B533-3DBB3FDC8E5E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.4:*:*:*:*:*:*",
"matchCriteriaId": "20F61B2C-AC76-4E7A-8675-CC7075441274",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.5:*:*:*:*:*:*",
"matchCriteriaId": "839CE73D-D363-46C0-A7D8-0E0970C9D960",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.6:*:*:*:*:*:*",
"matchCriteriaId": "609D3A11-7245-4347-94B6-349D665BBA1A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.7:*:*:*:*:*:*",
"matchCriteriaId": "0CF2C0B8-8DBD-44E7-A247-46FBCA6DE606",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.8:*:*:*:*:*:*",
"matchCriteriaId": "22CF3A40-D17E-47AD-A109-20A476238BA7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:dev.9:*:*:*:*:*:*",
"matchCriteriaId": "7F5C7A93-25F2-4429-9278-46F990ECB310",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:pre1:*:*:*:*:*:*",
"matchCriteriaId": "9619AB62-947D-4DD8-9870-245DF1A6BE94",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:pre2:*:*:*:*:*:*",
"matchCriteriaId": "133925D5-A33B-4B85-A834-6A187C186250",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:pre3:*:*:*:*:*:*",
"matchCriteriaId": "445D1083-FF37-466F-97FA-2B757692BA8F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:pre4:*:*:*:*:*:*",
"matchCriteriaId": "6CAD635C-FAB2-4BB1-AFBA-FC6A692C58B9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:pre5:*:*:*:*:*:*",
"matchCriteriaId": "A18F33E1-52BC-4A6F-99C6-02777FBE2D3E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:pre6:*:*:*:*:*:*",
"matchCriteriaId": "7911DA89-EA53-4E8C-87AE-B0E14EDF0040",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:pre7:*:*:*:*:*:*",
"matchCriteriaId": "83F2DC55-5D05-4336-8090-4563847819D0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:pre8:*:*:*:*:*:*",
"matchCriteriaId": "628F3D87-9FCE-4BF5-8381-01E3181464B7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.3:rel1:*:*:*:*:*:*",
"matchCriteriaId": "D53E25C2-BE29-4123-8AC0-FFD4760C7D0A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev1:*:*:*:*:*:*",
"matchCriteriaId": "4C0A1E2A-6846-43B7-89F7-EAFE87F23EB6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev10:*:*:*:*:*:*",
"matchCriteriaId": "79B7CD30-4DFA-4516-BFCE-D1628C4CB9F5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev11:*:*:*:*:*:*",
"matchCriteriaId": "FC834555-D75D-4A46-847B-6E8531A805CE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev12:*:*:*:*:*:*",
"matchCriteriaId": "6D08BCAF-B83C-426B-A826-5D78D7D22C4D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev13:*:*:*:*:*:*",
"matchCriteriaId": "960F3E0F-7C73-4D69-86DB-1307CF0B7F41",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev14:*:*:*:*:*:*",
"matchCriteriaId": "C4E41961-28B3-4CA1-98BE-CDDAC3E12E07",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev15:*:*:*:*:*:*",
"matchCriteriaId": "5569496E-BA89-40B6-A5C9-E8A8640F9606",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev16:*:*:*:*:*:*",
"matchCriteriaId": "1FF48553-45A3-449F-BAB1-B2A77352237B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev17:*:*:*:*:*:*",
"matchCriteriaId": "AF350141-E5CC-451E-A05A-AD5EA160D3BC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev18:*:*:*:*:*:*",
"matchCriteriaId": "D6739C37-A79B-49B5-B2FD-357F6B05E0CD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev19:*:*:*:*:*:*",
"matchCriteriaId": "56F72A7B-217D-4EAF-8187-F8C59CF891E3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev2:*:*:*:*:*:*",
"matchCriteriaId": "49BF5E5B-2AE0-4BBF-AF13-0E4F7E284A3E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev20:*:*:*:*:*:*",
"matchCriteriaId": "538BD607-D360-4436-919F-00F0735F2F63",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev21:*:*:*:*:*:*",
"matchCriteriaId": "3B07CAD3-7F2F-4549-AF28-A5CE69CB2038",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev3:*:*:*:*:*:*",
"matchCriteriaId": "692D1DAF-46EE-4782-9B03-13D258C8EF5E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev4:*:*:*:*:*:*",
"matchCriteriaId": "B31CE784-35EC-45C6-9D06-9577C66B051A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev5:*:*:*:*:*:*",
"matchCriteriaId": "6D94E3FF-08E2-42D0-8AB9-4FFC4C9834D3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev6:*:*:*:*:*:*",
"matchCriteriaId": "F20427C6-347C-4E1E-B983-7DCDF2D72ABF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev7:*:*:*:*:*:*",
"matchCriteriaId": "8EE07315-C850-4181-A531-31220BFF9A0D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev8:*:*:*:*:*:*",
"matchCriteriaId": "C7982641-B75F-454F-834F-EAF3BA897C38",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:dev9:*:*:*:*:*:*",
"matchCriteriaId": "04EBC013-48E1-407C-A8E5-5F30CF11AFD7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:pre.1:*:*:*:*:*:*",
"matchCriteriaId": "FC3E52FF-3CD4-4A01-8F89-584563A06352",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:pre.2:*:*:*:*:*:*",
"matchCriteriaId": "7C9C8B8B-CE71-4CB0-8C10-FBC3172B9269",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:pre.3:*:*:*:*:*:*",
"matchCriteriaId": "66889F07-374C-4B9E-8C98-4578C5173A7B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:pre.4:*:*:*:*:*:*",
"matchCriteriaId": "12F6F8F4-298D-460E-AC41-29FB448B96D7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:pre.5:*:*:*:*:*:*",
"matchCriteriaId": "FCC527A6-4804-47B7-9A5A-61402431BAA9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.4:rel.1:*:*:*:*:*:*",
"matchCriteriaId": "76FBFA8F-B2EF-489E-A832-08DC1BA091AD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.1:*:*:*:*:*:*",
"matchCriteriaId": "59FE42C9-ABE6-4622-8AAE-D58C5C3060B1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.10:*:*:*:*:*:*",
"matchCriteriaId": "0D31A992-F02D-4F76-A6B5-F3A8C4BD1040",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.11:*:*:*:*:*:*",
"matchCriteriaId": "4D03BC65-AE7E-4AB1-805F-7BF3A15FE035",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.12:*:*:*:*:*:*",
"matchCriteriaId": "633F1F2A-4F8A-4C5F-9D95-B806CBC5B74C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.13:*:*:*:*:*:*",
"matchCriteriaId": "80F84D1E-3C9F-48A6-BED2-F3669B8EC819",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.14:*:*:*:*:*:*",
"matchCriteriaId": "FA979A2C-FBA8-4A86-8830-C0824AF54C22",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.15:*:*:*:*:*:*",
"matchCriteriaId": "9EF93004-261D-4C40-A288-C029A3054E4F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.16:*:*:*:*:*:*",
"matchCriteriaId": "F96D987C-B89F-48F8-BD22-0EA7E845B920",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.17:*:*:*:*:*:*",
"matchCriteriaId": "D2BA9934-E4AC-43BF-B860-3C60B5F18DB3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.2:*:*:*:*:*:*",
"matchCriteriaId": "0990275A-E44E-43F9-9164-B1979719BC9E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.3:*:*:*:*:*:*",
"matchCriteriaId": "C0D186F7-CDBE-415B-AB26-146BA8F3FC7F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.4:*:*:*:*:*:*",
"matchCriteriaId": "B0A4224C-A1B5-4BEB-9B4A-78CD0243E669",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.5:*:*:*:*:*:*",
"matchCriteriaId": "5E733E5C-8272-4D18-99C4-2862728F7E88",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.6:*:*:*:*:*:*",
"matchCriteriaId": "386FC0D1-38F1-491B-949C-65138E864C18",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.7:*:*:*:*:*:*",
"matchCriteriaId": "2C2EF1AA-77DF-424F-9473-4831ACE3F47E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.8:*:*:*:*:*:*",
"matchCriteriaId": "2436626C-6214-4D73-923C-4BBD9148AE19",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:dev.9:*:*:*:*:*:*",
"matchCriteriaId": "4F59D4B7-77A5-487B-B9D7-ACCDC25BE03B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:pre.1:*:*:*:*:*:*",
"matchCriteriaId": "A311B404-6815-434F-9948-971E316AB08E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:pre.2:*:*:*:*:*:*",
"matchCriteriaId": "CF21426F-0A83-4CAA-B8FE-5D1140840792",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:pre.3:*:*:*:*:*:*",
"matchCriteriaId": "A440FBED-FBE9-499C-AAEE-A476526B3862",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:pre.4:*:*:*:*:*:*",
"matchCriteriaId": "8BED0DE4-DC20-44FF-A491-E22A59BED1C5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:pre.5:*:*:*:*:*:*",
"matchCriteriaId": "FB00EE41-8071-46BB-B783-F37B25072C43",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.5:rel.1:*:*:*:*:*:*",
"matchCriteriaId": "4E00B7BF-21AC-4E32-96ED-641A39C79326",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev1:*:*:*:*:*:*",
"matchCriteriaId": "ABB39A6E-973C-429D-9BAA-0B7A377F4679",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev10:*:*:*:*:*:*",
"matchCriteriaId": "C78F3CA3-2C11-4019-BF9D-2B2A3149BC53",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev11:*:*:*:*:*:*",
"matchCriteriaId": "210DDCD6-36E2-4B3F-9765-D7F3C8DB49E7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev12:*:*:*:*:*:*",
"matchCriteriaId": "64BCE913-DB20-40A7-9BC2-984541F3535C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev13:*:*:*:*:*:*",
"matchCriteriaId": "2EFD0B54-67F6-4149-AF8A-191C550EF088",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev14:*:*:*:*:*:*",
"matchCriteriaId": "19C5642E-037F-4E75-8949-255F1368596D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev2:*:*:*:*:*:*",
"matchCriteriaId": "C45DF1C4-4B67-4773-BF03-E15C18CEFA1D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev3:*:*:*:*:*:*",
"matchCriteriaId": "962E0199-2154-4F10-A58E-753FA840A631",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev4:*:*:*:*:*:*",
"matchCriteriaId": "F16BA322-D764-4648-BB7C-3AD5E4F76CFB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev5:*:*:*:*:*:*",
"matchCriteriaId": "FA8D13D1-56BF-4237-A86F-9C270992D047",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev6:*:*:*:*:*:*",
"matchCriteriaId": "1A1A3227-4F30-49F1-947D-E20D7A4A4A36",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev7:*:*:*:*:*:*",
"matchCriteriaId": "E77E1F5A-8BEC-4126-98DB-25F53CD95085",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev8:*:*:*:*:*:*",
"matchCriteriaId": "F044F727-1BA7-4307-B237-48B5D0127CCB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lynx:lynx:2.8.6:dev9:*:*:*:*:*:*",
"matchCriteriaId": "B65566DF-BEE2-4808-A03E-685B931EF827",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "lynx 2.8.6dev.15 and earlier, when advanced mode is enabled and lynx is configured as a URL handler, allows remote attackers to execute arbitrary commands via a crafted lynxcgi: URL, a related issue to CVE-2005-2929. NOTE: this might only be a vulnerability in limited deployments that have defined a lynxcgi: handler."
},
{
"lang": "es",
"value": "lynx v2.8.6dev.15 y anteriores, cuando est\u00e1 activado el modo avanzado y lynx est\u00e1 configurado como manejador de URL, permite a atacantes remotos ejecutar comandos de su elecci\u00f3n a trav\u00e9s de un lynxcgi: URL manipulado. Cuesti\u00f3n relacionada con el CVE-2005-2929. NOTA: se trata de una vulnerabilidad \u00fanicamente en algunos desarrollos que tienen definido un lynxcgi: handler."
}
],
"id": "CVE-2008-4690",
"lastModified": "2025-04-09T00:30:58.490",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": true,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 10.0,
"obtainAllPrivilege": true,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2008-10-22T18:00:01.287",
"references": [
{
"source": "cve@mitre.org",
"url": "http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/32416"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/32967"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/33568"
},
{
"source": "cve@mitre.org",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:217"
},
{
"source": "cve@mitre.org",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:218"
},
{
"source": "cve@mitre.org",
"url": "http://www.openwall.com/lists/oss-security/2008/10/09/2"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2008-0965.html"
},
{
"source": "cve@mitre.org",
"url": "http://www.securitytracker.com/id?1021105"
},
{
"source": "cve@mitre.org",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46228"
},
{
"source": "cve@mitre.org",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11204"
},
{
"source": "cve@mitre.org",
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00066.html"
},
{
"source": "cve@mitre.org",
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00143.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/32416"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/32967"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/33568"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:217"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:218"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.openwall.com/lists/oss-security/2008/10/09/2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2008-0965.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securitytracker.com/id?1021105"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46228"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11204"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00066.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00143.html"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
CVE-2016-9179 (GCVE-0-2016-9179)
Vulnerability from cvelistv5 – Published: 2016-12-22 21:00 – Updated: 2024-08-06 02:42
VLAI?
Summary
lynx: It was found that Lynx doesn't parse the authority component of the URL correctly when the host name part ends with '?', and could instead be tricked into connecting to a different host.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T02:42:10.982Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "94215",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/94215"
},
{
"name": "[oss-security] 20161104 Re: CVE requestynx invalid URL parsing with \u0027?\u0027",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2016/11/04/1"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2016-11-04T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "lynx: It was found that Lynx doesn\u0027t parse the authority component of the URL correctly when the host name part ends with \u0027?\u0027, and could instead be tricked into connecting to a different host."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-12-22T20:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "94215",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/94215"
},
{
"name": "[oss-security] 20161104 Re: CVE requestynx invalid URL parsing with \u0027?\u0027",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2016/11/04/1"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2016-9179",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "lynx: It was found that Lynx doesn\u0027t parse the authority component of the URL correctly when the host name part ends with \u0027?\u0027, and could instead be tricked into connecting to a different host."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "94215",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/94215"
},
{
"name": "[oss-security] 20161104 Re: CVE requestynx invalid URL parsing with \u0027?\u0027",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2016/11/04/1"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2016-9179",
"datePublished": "2016-12-22T21:00:00",
"dateReserved": "2016-11-04T00:00:00",
"dateUpdated": "2024-08-06T02:42:10.982Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2012-5821 (GCVE-0-2012-5821)
Vulnerability from cvelistv5 – Published: 2012-11-04 22:00 – Updated: 2024-08-06 21:21
VLAI?
Summary
Lynx does not verify that the server's certificate is signed by a trusted certification authority, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate, related to improper use of a certain GnuTLS function.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T21:21:26.758Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0351"
},
{
"name": "USN-1642-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-1642-1"
},
{
"name": "lynx-ssl-spoofing(79930)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/79930"
},
{
"name": "MDVSA-2013:101",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:101"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2012-10-25T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Lynx does not verify that the server\u0027s certificate is signed by a trusted certification authority, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate, related to improper use of a certain GnuTLS function."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-28T12:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0351"
},
{
"name": "USN-1642-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-1642-1"
},
{
"name": "lynx-ssl-spoofing(79930)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/79930"
},
{
"name": "MDVSA-2013:101",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:101"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2012-5821",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Lynx does not verify that the server\u0027s certificate is signed by a trusted certification authority, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate, related to improper use of a certain GnuTLS function."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0351",
"refsource": "CONFIRM",
"url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0351"
},
{
"name": "USN-1642-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-1642-1"
},
{
"name": "lynx-ssl-spoofing(79930)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/79930"
},
{
"name": "MDVSA-2013:101",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:101"
},
{
"name": "http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf",
"refsource": "MISC",
"url": "http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2012-5821",
"datePublished": "2012-11-04T22:00:00",
"dateReserved": "2012-11-04T00:00:00",
"dateUpdated": "2024-08-06T21:21:26.758Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2010-2810 (GCVE-0-2010-2810)
Vulnerability from cvelistv5 – Published: 2010-08-20 17:00 – Updated: 2024-08-07 02:46
VLAI?
Summary
Heap-based buffer overflow in the convert_to_idna function in WWW/Library/Implementation/HTParse.c in Lynx 2.8.8dev.1 through 2.8.8dev.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a malformed URL containing a % (percent) character in the domain name.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T02:46:48.539Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "lynx-converttoidna-bo(61007)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/61007"
},
{
"name": "[oss-security] 20100809 Re: CVE request: Lynx",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://marc.info/?l=oss-security\u0026m=128152412221677\u0026w=2"
},
{
"name": "ADV-2010-2042",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2010/2042"
},
{
"name": "USN-1642-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-1642-1"
},
{
"name": "[oss-security] 20100809 CVE request: Lynx",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://marc.info/?l=oss-security\u0026m=128151768510564\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugs.launchpad.net/ubuntu/+source/lynx-cur/+bug/613254"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2010-08-09T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Heap-based buffer overflow in the convert_to_idna function in WWW/Library/Implementation/HTParse.c in Lynx 2.8.8dev.1 through 2.8.8dev.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a malformed URL containing a % (percent) character in the domain name."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-16T14:57:01",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "lynx-converttoidna-bo(61007)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/61007"
},
{
"name": "[oss-security] 20100809 Re: CVE request: Lynx",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://marc.info/?l=oss-security\u0026m=128152412221677\u0026w=2"
},
{
"name": "ADV-2010-2042",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2010/2042"
},
{
"name": "USN-1642-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-1642-1"
},
{
"name": "[oss-security] 20100809 CVE request: Lynx",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://marc.info/?l=oss-security\u0026m=128151768510564\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugs.launchpad.net/ubuntu/+source/lynx-cur/+bug/613254"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2010-2810",
"datePublished": "2010-08-20T17:00:00",
"dateReserved": "2010-07-22T00:00:00",
"dateUpdated": "2024-08-07T02:46:48.539Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2006-7234 (GCVE-0-2006-7234)
Vulnerability from cvelistv5 – Published: 2008-10-27 17:00 – Updated: 2024-08-07 20:57
VLAI?
Summary
Untrusted search path vulnerability in Lynx before 2.8.6rel.4 allows local users to execute arbitrary code via malicious (1) .mailcap and (2) mime.types files in the current working directory.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T20:57:40.509Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "[oss-security] 20081025 CVE request: lynx (old) .mailcap handling flaw",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2008/10/25/3"
},
{
"name": "31917",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/31917"
},
{
"name": "oval:org.mitre.oval:def:9719",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL",
"x_transferred"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9719"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=214205"
},
{
"name": "RHSA-2008:0965",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2008-0965.html"
},
{
"name": "1021107",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1021107"
},
{
"name": "32407",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/32407"
},
{
"name": "SUSE-SR:2009:002",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html"
},
{
"name": "33568",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/33568"
},
{
"name": "MDVSA-2008:217",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:217"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=396949"
},
{
"name": "lynx-mailcap-mimetype-code-execution(46132)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46132"
},
{
"name": "32416",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/32416"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2006-11-03T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Untrusted search path vulnerability in Lynx before 2.8.6rel.4 allows local users to execute arbitrary code via malicious (1) .mailcap and (2) mime.types files in the current working directory."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-10-10T00:57:01",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "[oss-security] 20081025 CVE request: lynx (old) .mailcap handling flaw",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2008/10/25/3"
},
{
"name": "31917",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/31917"
},
{
"name": "oval:org.mitre.oval:def:9719",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9719"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=214205"
},
{
"name": "RHSA-2008:0965",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2008-0965.html"
},
{
"name": "1021107",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1021107"
},
{
"name": "32407",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/32407"
},
{
"name": "SUSE-SR:2009:002",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html"
},
{
"name": "33568",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/33568"
},
{
"name": "MDVSA-2008:217",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:217"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=396949"
},
{
"name": "lynx-mailcap-mimetype-code-execution(46132)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46132"
},
{
"name": "32416",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/32416"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2006-7234",
"datePublished": "2008-10-27T17:00:00",
"dateReserved": "2008-10-27T00:00:00",
"dateUpdated": "2024-08-07T20:57:40.509Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2008-4690 (GCVE-0-2008-4690)
Vulnerability from cvelistv5 – Published: 2008-10-22 17:00 – Updated: 2024-08-07 10:24
VLAI?
Summary
lynx 2.8.6dev.15 and earlier, when advanced mode is enabled and lynx is configured as a URL handler, allows remote attackers to execute arbitrary commands via a crafted lynxcgi: URL, a related issue to CVE-2005-2929. NOTE: this might only be a vulnerability in limited deployments that have defined a lynxcgi: handler.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T10:24:20.695Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "FEDORA-2008-9597",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00143.html"
},
{
"name": "RHSA-2008:0965",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2008-0965.html"
},
{
"name": "[oss-security] 20081009 lynx lynxcgi handler flaw",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2008/10/09/2"
},
{
"name": "32967",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/32967"
},
{
"name": "MDVSA-2008:218",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:218"
},
{
"name": "SUSE-SR:2009:002",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html"
},
{
"name": "FEDORA-2008-9550",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00066.html"
},
{
"name": "33568",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/33568"
},
{
"name": "lynx-lynxcgi-code-execution(46228)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46228"
},
{
"name": "MDVSA-2008:217",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:217"
},
{
"name": "1021105",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1021105"
},
{
"name": "32416",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/32416"
},
{
"name": "oval:org.mitre.oval:def:11204",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL",
"x_transferred"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11204"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2008-10-09T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "lynx 2.8.6dev.15 and earlier, when advanced mode is enabled and lynx is configured as a URL handler, allows remote attackers to execute arbitrary commands via a crafted lynxcgi: URL, a related issue to CVE-2005-2929. NOTE: this might only be a vulnerability in limited deployments that have defined a lynxcgi: handler."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-09-28T12:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "FEDORA-2008-9597",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00143.html"
},
{
"name": "RHSA-2008:0965",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2008-0965.html"
},
{
"name": "[oss-security] 20081009 lynx lynxcgi handler flaw",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2008/10/09/2"
},
{
"name": "32967",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/32967"
},
{
"name": "MDVSA-2008:218",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:218"
},
{
"name": "SUSE-SR:2009:002",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html"
},
{
"name": "FEDORA-2008-9550",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00066.html"
},
{
"name": "33568",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/33568"
},
{
"name": "lynx-lynxcgi-code-execution(46228)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46228"
},
{
"name": "MDVSA-2008:217",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:217"
},
{
"name": "1021105",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1021105"
},
{
"name": "32416",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/32416"
},
{
"name": "oval:org.mitre.oval:def:11204",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11204"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2008-4690",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "lynx 2.8.6dev.15 and earlier, when advanced mode is enabled and lynx is configured as a URL handler, allows remote attackers to execute arbitrary commands via a crafted lynxcgi: URL, a related issue to CVE-2005-2929. NOTE: this might only be a vulnerability in limited deployments that have defined a lynxcgi: handler."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "FEDORA-2008-9597",
"refsource": "FEDORA",
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00143.html"
},
{
"name": "RHSA-2008:0965",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2008-0965.html"
},
{
"name": "[oss-security] 20081009 lynx lynxcgi handler flaw",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2008/10/09/2"
},
{
"name": "32967",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/32967"
},
{
"name": "MDVSA-2008:218",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:218"
},
{
"name": "SUSE-SR:2009:002",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html"
},
{
"name": "FEDORA-2008-9550",
"refsource": "FEDORA",
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00066.html"
},
{
"name": "33568",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/33568"
},
{
"name": "lynx-lynxcgi-code-execution(46228)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46228"
},
{
"name": "MDVSA-2008:217",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:217"
},
{
"name": "1021105",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id?1021105"
},
{
"name": "32416",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/32416"
},
{
"name": "oval:org.mitre.oval:def:11204",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11204"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2008-4690",
"datePublished": "2008-10-22T17:00:00",
"dateReserved": "2008-10-22T00:00:00",
"dateUpdated": "2024-08-07T10:24:20.695Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2016-9179 (GCVE-0-2016-9179)
Vulnerability from nvd – Published: 2016-12-22 21:00 – Updated: 2024-08-06 02:42
VLAI?
Summary
lynx: It was found that Lynx doesn't parse the authority component of the URL correctly when the host name part ends with '?', and could instead be tricked into connecting to a different host.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T02:42:10.982Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "94215",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/94215"
},
{
"name": "[oss-security] 20161104 Re: CVE requestynx invalid URL parsing with \u0027?\u0027",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2016/11/04/1"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2016-11-04T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "lynx: It was found that Lynx doesn\u0027t parse the authority component of the URL correctly when the host name part ends with \u0027?\u0027, and could instead be tricked into connecting to a different host."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-12-22T20:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "94215",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/94215"
},
{
"name": "[oss-security] 20161104 Re: CVE requestynx invalid URL parsing with \u0027?\u0027",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2016/11/04/1"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2016-9179",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "lynx: It was found that Lynx doesn\u0027t parse the authority component of the URL correctly when the host name part ends with \u0027?\u0027, and could instead be tricked into connecting to a different host."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "94215",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/94215"
},
{
"name": "[oss-security] 20161104 Re: CVE requestynx invalid URL parsing with \u0027?\u0027",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2016/11/04/1"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2016-9179",
"datePublished": "2016-12-22T21:00:00",
"dateReserved": "2016-11-04T00:00:00",
"dateUpdated": "2024-08-06T02:42:10.982Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2012-5821 (GCVE-0-2012-5821)
Vulnerability from nvd – Published: 2012-11-04 22:00 – Updated: 2024-08-06 21:21
VLAI?
Summary
Lynx does not verify that the server's certificate is signed by a trusted certification authority, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate, related to improper use of a certain GnuTLS function.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T21:21:26.758Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0351"
},
{
"name": "USN-1642-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-1642-1"
},
{
"name": "lynx-ssl-spoofing(79930)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/79930"
},
{
"name": "MDVSA-2013:101",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:101"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2012-10-25T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Lynx does not verify that the server\u0027s certificate is signed by a trusted certification authority, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate, related to improper use of a certain GnuTLS function."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-28T12:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0351"
},
{
"name": "USN-1642-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-1642-1"
},
{
"name": "lynx-ssl-spoofing(79930)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/79930"
},
{
"name": "MDVSA-2013:101",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:101"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2012-5821",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Lynx does not verify that the server\u0027s certificate is signed by a trusted certification authority, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate, related to improper use of a certain GnuTLS function."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0351",
"refsource": "CONFIRM",
"url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0351"
},
{
"name": "USN-1642-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-1642-1"
},
{
"name": "lynx-ssl-spoofing(79930)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/79930"
},
{
"name": "MDVSA-2013:101",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:101"
},
{
"name": "http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf",
"refsource": "MISC",
"url": "http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2012-5821",
"datePublished": "2012-11-04T22:00:00",
"dateReserved": "2012-11-04T00:00:00",
"dateUpdated": "2024-08-06T21:21:26.758Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2010-2810 (GCVE-0-2010-2810)
Vulnerability from nvd – Published: 2010-08-20 17:00 – Updated: 2024-08-07 02:46
VLAI?
Summary
Heap-based buffer overflow in the convert_to_idna function in WWW/Library/Implementation/HTParse.c in Lynx 2.8.8dev.1 through 2.8.8dev.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a malformed URL containing a % (percent) character in the domain name.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T02:46:48.539Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "lynx-converttoidna-bo(61007)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/61007"
},
{
"name": "[oss-security] 20100809 Re: CVE request: Lynx",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://marc.info/?l=oss-security\u0026m=128152412221677\u0026w=2"
},
{
"name": "ADV-2010-2042",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2010/2042"
},
{
"name": "USN-1642-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-1642-1"
},
{
"name": "[oss-security] 20100809 CVE request: Lynx",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://marc.info/?l=oss-security\u0026m=128151768510564\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugs.launchpad.net/ubuntu/+source/lynx-cur/+bug/613254"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2010-08-09T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Heap-based buffer overflow in the convert_to_idna function in WWW/Library/Implementation/HTParse.c in Lynx 2.8.8dev.1 through 2.8.8dev.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a malformed URL containing a % (percent) character in the domain name."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-16T14:57:01",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "lynx-converttoidna-bo(61007)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/61007"
},
{
"name": "[oss-security] 20100809 Re: CVE request: Lynx",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://marc.info/?l=oss-security\u0026m=128152412221677\u0026w=2"
},
{
"name": "ADV-2010-2042",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2010/2042"
},
{
"name": "USN-1642-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-1642-1"
},
{
"name": "[oss-security] 20100809 CVE request: Lynx",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://marc.info/?l=oss-security\u0026m=128151768510564\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugs.launchpad.net/ubuntu/+source/lynx-cur/+bug/613254"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2010-2810",
"datePublished": "2010-08-20T17:00:00",
"dateReserved": "2010-07-22T00:00:00",
"dateUpdated": "2024-08-07T02:46:48.539Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2006-7234 (GCVE-0-2006-7234)
Vulnerability from nvd – Published: 2008-10-27 17:00 – Updated: 2024-08-07 20:57
VLAI?
Summary
Untrusted search path vulnerability in Lynx before 2.8.6rel.4 allows local users to execute arbitrary code via malicious (1) .mailcap and (2) mime.types files in the current working directory.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T20:57:40.509Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "[oss-security] 20081025 CVE request: lynx (old) .mailcap handling flaw",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2008/10/25/3"
},
{
"name": "31917",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/31917"
},
{
"name": "oval:org.mitre.oval:def:9719",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL",
"x_transferred"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9719"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=214205"
},
{
"name": "RHSA-2008:0965",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2008-0965.html"
},
{
"name": "1021107",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1021107"
},
{
"name": "32407",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/32407"
},
{
"name": "SUSE-SR:2009:002",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html"
},
{
"name": "33568",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/33568"
},
{
"name": "MDVSA-2008:217",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:217"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=396949"
},
{
"name": "lynx-mailcap-mimetype-code-execution(46132)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46132"
},
{
"name": "32416",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/32416"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2006-11-03T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Untrusted search path vulnerability in Lynx before 2.8.6rel.4 allows local users to execute arbitrary code via malicious (1) .mailcap and (2) mime.types files in the current working directory."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-10-10T00:57:01",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "[oss-security] 20081025 CVE request: lynx (old) .mailcap handling flaw",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2008/10/25/3"
},
{
"name": "31917",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/31917"
},
{
"name": "oval:org.mitre.oval:def:9719",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9719"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=214205"
},
{
"name": "RHSA-2008:0965",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2008-0965.html"
},
{
"name": "1021107",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1021107"
},
{
"name": "32407",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/32407"
},
{
"name": "SUSE-SR:2009:002",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html"
},
{
"name": "33568",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/33568"
},
{
"name": "MDVSA-2008:217",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:217"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=396949"
},
{
"name": "lynx-mailcap-mimetype-code-execution(46132)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46132"
},
{
"name": "32416",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/32416"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2006-7234",
"datePublished": "2008-10-27T17:00:00",
"dateReserved": "2008-10-27T00:00:00",
"dateUpdated": "2024-08-07T20:57:40.509Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2008-4690 (GCVE-0-2008-4690)
Vulnerability from nvd – Published: 2008-10-22 17:00 – Updated: 2024-08-07 10:24
VLAI?
Summary
lynx 2.8.6dev.15 and earlier, when advanced mode is enabled and lynx is configured as a URL handler, allows remote attackers to execute arbitrary commands via a crafted lynxcgi: URL, a related issue to CVE-2005-2929. NOTE: this might only be a vulnerability in limited deployments that have defined a lynxcgi: handler.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T10:24:20.695Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "FEDORA-2008-9597",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00143.html"
},
{
"name": "RHSA-2008:0965",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2008-0965.html"
},
{
"name": "[oss-security] 20081009 lynx lynxcgi handler flaw",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2008/10/09/2"
},
{
"name": "32967",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/32967"
},
{
"name": "MDVSA-2008:218",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:218"
},
{
"name": "SUSE-SR:2009:002",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html"
},
{
"name": "FEDORA-2008-9550",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00066.html"
},
{
"name": "33568",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/33568"
},
{
"name": "lynx-lynxcgi-code-execution(46228)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46228"
},
{
"name": "MDVSA-2008:217",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:217"
},
{
"name": "1021105",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1021105"
},
{
"name": "32416",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/32416"
},
{
"name": "oval:org.mitre.oval:def:11204",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL",
"x_transferred"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11204"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2008-10-09T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "lynx 2.8.6dev.15 and earlier, when advanced mode is enabled and lynx is configured as a URL handler, allows remote attackers to execute arbitrary commands via a crafted lynxcgi: URL, a related issue to CVE-2005-2929. NOTE: this might only be a vulnerability in limited deployments that have defined a lynxcgi: handler."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-09-28T12:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "FEDORA-2008-9597",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00143.html"
},
{
"name": "RHSA-2008:0965",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2008-0965.html"
},
{
"name": "[oss-security] 20081009 lynx lynxcgi handler flaw",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2008/10/09/2"
},
{
"name": "32967",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/32967"
},
{
"name": "MDVSA-2008:218",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:218"
},
{
"name": "SUSE-SR:2009:002",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html"
},
{
"name": "FEDORA-2008-9550",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00066.html"
},
{
"name": "33568",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/33568"
},
{
"name": "lynx-lynxcgi-code-execution(46228)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46228"
},
{
"name": "MDVSA-2008:217",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:217"
},
{
"name": "1021105",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1021105"
},
{
"name": "32416",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/32416"
},
{
"name": "oval:org.mitre.oval:def:11204",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11204"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2008-4690",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "lynx 2.8.6dev.15 and earlier, when advanced mode is enabled and lynx is configured as a URL handler, allows remote attackers to execute arbitrary commands via a crafted lynxcgi: URL, a related issue to CVE-2005-2929. NOTE: this might only be a vulnerability in limited deployments that have defined a lynxcgi: handler."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "FEDORA-2008-9597",
"refsource": "FEDORA",
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00143.html"
},
{
"name": "RHSA-2008:0965",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2008-0965.html"
},
{
"name": "[oss-security] 20081009 lynx lynxcgi handler flaw",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2008/10/09/2"
},
{
"name": "32967",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/32967"
},
{
"name": "MDVSA-2008:218",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:218"
},
{
"name": "SUSE-SR:2009:002",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html"
},
{
"name": "FEDORA-2008-9550",
"refsource": "FEDORA",
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00066.html"
},
{
"name": "33568",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/33568"
},
{
"name": "lynx-lynxcgi-code-execution(46228)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46228"
},
{
"name": "MDVSA-2008:217",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:217"
},
{
"name": "1021105",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id?1021105"
},
{
"name": "32416",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/32416"
},
{
"name": "oval:org.mitre.oval:def:11204",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11204"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2008-4690",
"datePublished": "2008-10-22T17:00:00",
"dateReserved": "2008-10-22T00:00:00",
"dateUpdated": "2024-08-07T10:24:20.695Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}