Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2008-4690HistoryOct 22, 2008 - 6:00 p.m.
CVE-2008-4690
2008-10-2218:00:01
Debian Security Bug Tracker
security-tracker.debian.org
12
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.018
Percentile
88.2%
lynx 2.8.6dev.15 and earlier, when advanced mode is enabled and lynx is configured as a URL handler, allows remote attackers to execute arbitrary commands via a crafted lynxcgi: URL, a related issue to CVE-2005-2929. NOTE: this might only be a vulnerability in limited deployments that have defined a lynxcgi: handler.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | lynx | < 2.9.0dev.12-1 | lynx_2.9.0dev.12-1_all.deb |
| Debian | 11 | all | lynx | < 2.9.0dev.6-3~deb11u1 | lynx_2.9.0dev.6-3~deb11u1_all.deb |
| Debian | 999 | all | lynx | < 2.9.2-1 | lynx_2.9.2-1_all.deb |
| Debian | 13 | all | lynx | < 2.9.2-1 | lynx_2.9.2-1_all.deb |
Related
gentoo
gentoo
Lynx: Arbitrary command execution
2009-09-12 00:00:00
Lynx: Arbitrary command execution
2005-11-13 00:00:00
nvd
nvd
CVE-2008-4690
2008-10-22 18:00:01
CVE-2005-2929
2005-11-18 06:03:00
nessus
nessus
GLSA-200909-15 : Lynx: Arbitrary command execution
2009-09-14 00:00:00
Fedora 9 : lynx-2.8.6-17.fc9 (2008-9550)
2008-12-03 00:00:00
Fedora 10 : lynx-2.8.6-18.fc10 (2008-9952)
2009-04-23 00:00:00
prion
prion
Sql injection
2008-10-22 18:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200909-15 (lynx)
2009-09-15 00:00:00
Gentoo Security Advisory GLSA 200909-15 (lynx)
2009-09-15 00:00:00
Fedora Update for lynx FEDORA-2008-9597
2009-02-17 00:00:00
cve
cve
CVE-2008-4690
2008-10-22 18:00:01
CVE-2005-2929
2005-11-18 11:00:00
ubuntucve
ubuntucve
CVE-2008-4690
2008-10-22 00:00:00
CVE-2005-2929
2005-11-18 00:00:00
cvelist
cvelist
CVE-2008-4690
2008-10-22 17:00:00
CVE-2005-2929
2005-11-18 11:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: lynx-2.8.6-18.fc10
2008-12-03 01:19:13
[SECURITY] Fedora 9 Update: lynx-2.8.6-17.fc9
2008-12-03 01:19:24
[SECURITY] Fedora 8 Update: lynx-2.8.6-12.fc8
2008-12-03 01:25:01
securityvulns
securityvulns
[ MDVSA-2008:218 ] lynx
2008-10-29 00:00:00
lynx code execution
2008-10-29 00:00:00
centos
centos
lynx security update
2005-11-12 01:33:47
lynx security update
2005-11-13 22:59:14
security update
2008-10-28 22:46:30
debiancve
debiancve
CVE-2005-2929
2005-11-18 11:00:00
redhat
redhat
(RHSA-2005:839) lynx security update
2005-11-11 00:00:00
(RHSA-2008:0965) Important: lynx security update
2008-10-27 00:00:00
oraclelinux
oraclelinux
lynx security update
2008-10-27 00:00:00
osv
osv
lynx-2.8.8rel.2-4.13 on GA media
2024-06-15 00:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.018
Percentile
88.2%
Related for DEBIANCVE:CVE-2008-4690