Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2005-2929HistoryNov 18, 2005 - 11:00 a.m.
CVE-2005-2929
2005-11-1811:00:00
Debian Security Bug Tracker
security-tracker.debian.org
13
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.018
Percentile
88.2%
Lynx 2.8.5, and other versions before 2.8.6dev.15, allows remote attackers to execute arbitrary commands via (1) lynxcgi:, (2) lynxexec, and (3) lynxprog links, which are not properly restricted in the default configuration in some environments.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | lynx | < 2.9.0dev.12-1 | lynx_2.9.0dev.12-1_all.deb |
| Debian | 11 | all | lynx | < 2.9.0dev.6-3~deb11u1 | lynx_2.9.0dev.6-3~deb11u1_all.deb |
| Debian | 999 | all | lynx | < 2.9.2-1 | lynx_2.9.2-1_all.deb |
| Debian | 13 | all | lynx | < 2.9.2-1 | lynx_2.9.2-1_all.deb |
Related
centos
centos
lynx security update
2005-11-12 01:33:47
lynx security update
2005-11-13 22:59:14
ubuntucve
ubuntucve
CVE-2005-2929
2005-11-18 00:00:00
CVE-2008-4690
2008-10-22 00:00:00
nessus
nessus
GLSA-200511-09 : Lynx: Arbitrary command execution
2005-11-15 00:00:00
RHEL 2.1 / 3 / 4 : lynx (RHSA-2005:839)
2005-11-15 00:00:00
Mandrake Linux Security Advisory : lynx (MDKSA-2005:211)
2006-01-15 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200511-09 (lynx)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200511-09 (lynx)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200909-15 (lynx)
2009-09-15 00:00:00
redhat
redhat
(RHSA-2005:839) lynx security update
2005-11-11 00:00:00
securityvulns
securityvulns
cvelist
cvelist
CVE-2005-2929
2005-11-18 11:00:00
CVE-2008-4690
2008-10-22 17:00:00
gentoo
gentoo
Lynx: Arbitrary command execution
2005-11-13 00:00:00
Lynx: Arbitrary command execution
2009-09-12 00:00:00
cve
cve
CVE-2005-2929
2005-11-18 11:00:00
CVE-2008-4690
2008-10-22 18:00:01
nvd
nvd
CVE-2005-2929
2005-11-18 06:03:00
CVE-2008-4690
2008-10-22 18:00:01
prion
prion
Sql injection
2008-10-22 18:00:00
debiancve
debiancve
CVE-2008-4690
2008-10-22 18:00:01
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.018
Percentile
88.2%
Related for DEBIANCVE:CVE-2005-2929