Описание
Lynx 2.x does not properly distinguish between internal and external HTML, which may allow a local attacker to read a "secure" hidden form value from a temporary file and craft a LYNXOPTIONS: URL that causes Lynx to modify the user's configuration file and execute commands.
Ссылки
- ExploitMailing List
- Broken LinkExploitThird Party AdvisoryVDB EntryVendor Advisory
- ExploitMailing List
- Broken LinkExploitThird Party AdvisoryVDB EntryVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:lynx_project:lynx:2.7:*:*:*:*:*:*:*
cpe:2.3:a:lynx_project:lynx:2.8:*:*:*:*:*:*:*
EPSS
Процентиль: 43%
0.0021
Низкий
7.8 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-346
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
Lynx 2.x does not properly distinguish between internal and external HTML, which may allow a local attacker to read a "secure" hidden form value from a temporary file and craft a LYNXOPTIONS: URL that causes Lynx to modify the user's configuration file and execute commands.
EPSS
Процентиль: 43%
0.0021
Низкий
7.8 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-346