Links web browser 1.00pre12 and Elinks 0.9.2 with smbclient installed allows remote attackers to execute arbitrary code via shell metacharacters in an smb:// URI, as demonstrated by using PUT and GET statements.
Max CVSS
7.5
EPSS Score
84.30%
Published
2006-11-15
Updated
2018-10-17
Links allows remote attackers to cause a denial of service (memory consumption) via a web page or HTML email that contains a table with a td element and a large rowspan value,as demonstrated by mangleme.
Max CVSS
5.0
EPSS Score
1.95%
Published
2004-10-18
Updated
2017-07-11
CRLF injection vulnerability in Lynx 2.8.4 and earlier allows remote attackers to inject false HTTP headers into an HTTP request that is provided on the command line, via a URL containing encoded carriage return, line feed, and other whitespace characters.
Max CVSS
5.0
EPSS Score
4.27%
Published
2003-02-19
Updated
2016-10-18
3 vulnerabilities found