lynx 2.8.6dev.15 and previous versions, when advanced mode is enabled and lynx is configured as a URL handler, allows remote malicious users to execute arbitrary commands via a crafted lynxcgi: URL, a related issue to CVE-2005-2929. NOTE: this might only be a vulnerability in limited deployments that have defined a lynxcgi: handler.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
lynx lynx 2.8.6 |
||
lynx lynx 2.8.5 |
||
lynx lynx 2.8.4 |
||
lynx lynx 2.8.3 |
||
lynx lynx 2.8.2 |
||
lynx lynx 2.8.1 |
||
lynx lynx |