w3m up to and including 0.5.3 does not properly handle temporary files when the ~/.w3m directory is unwritable, which allows a local malicious user to craft a symlink attack to overwrite arbitrary files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tats w3m |
||
canonical ubuntu linux 16.04 |
||
canonical ubuntu linux 14.04 |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 17.10 |