CVE-2005-3120
9.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD
Description
Stack-based buffer overflow in the HTrjis function in Lynx 2.8.6 and earlier allows remote NNTP servers to execute arbitrary code via certain article headers containing Asian characters that cause Lynx to add extra escape (ESC) characters.
Affected (3)
Products: Invisible Island: Lynx · Debian: Debian Linux
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.8.6 |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Version 3.0 |
References (70)
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.7/SCOSA-2006.7.txt (unsafe URL)
Source: security@debian.org
Broken Link
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.47/SCOSA-2005.47.txt (unsafe URL)
Source: security@debian.org
Broken Link
Source: security@debian.org
Broken LinkPatchVendor Advisory
Source: security@debian.org
Broken Link
Source: security@debian.org
Broken LinkThird Party AdvisoryVDB Entry
Source: security@debian.org
Broken Link
Source: security@debian.org
Third Party Advisory
Source: security@debian.org
Mailing ListThird Party Advisory
Source: security@debian.org
Mailing ListThird Party Advisory
Source: security@debian.org
Mailing ListThird Party Advisory
Source: security@debian.org
Third Party Advisory
Source: security@debian.org
Third Party Advisory
Source: security@debian.org
Broken Link
Source: security@debian.org
Broken LinkVendor Advisory
Source: security@debian.org
Broken LinkThird Party AdvisoryVDB Entry
Source: security@debian.org
Broken LinkThird Party AdvisoryVDB Entry
Source: security@debian.org
Broken LinkThird Party AdvisoryVDB Entry
Source: security@debian.org
Issue Tracking
Source: security@debian.org
Broken Link
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.7/SCOSA-2006.7.txt (unsafe URL)
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.47/SCOSA-2005.47.txt (unsafe URL)
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkPatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Issue Tracking
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Timeline
No history available yet.