Mandriva: Subject: [Security Announce] [ MDVSA-2008:218 ] lynx |
|
| BugsAlert Home > Mandriva: Subject: [Security Announce] [ MDVSA-2008:218 ] lynx | |
|
LinuxSecurity.com: A vulnerability was found in the Lynxcgi: URI handler that could allow an attacker to create a web page redirecting to a malicious URL that would execute arbitrary code as the user running Lynx, if they were using the non-default Advanced user mode (CVE-2008-4690). This update corrects these issues and, in addition, makes Lynx always prompt the user before loading a lynxcgi: URI. As well, the default lynx.cfg configuration file marks all lynxcgi: URIs as untrusted. Original Source: http://www.linuxsecurity.com/content/view/143698?rdf Learn more about Mandriva: Subject: [Security Announce] [ MDVSA-2008:218 ] lynx |
|
|
Tags: mandriva subject security announce mdvsa-2008 218 lynx |
|
Related Items |
|
|
CVE-2009-2050 (unified_communications_manager)
|
|
|
CVE-2008-5498 (php)
|
|
|
virus or not ?
|
|
|
CVE-2009-0718 (storageworks_storage_mirroring)
|
|
|
CVE-2009-1846 (sitex)
|
|
|
VBS_STARTPA.BK
|
|
|
Thunderbird Localization: Information regarding the upcoming Thunderbird 3.1 release
|
|