lynx

Top products

The 5 most recently published vulnerabilities affecting lynx.

• CVE-2016-9179lynx: It was found that Lynx doesn't parse the authority component of the URL correctly when the host name part ends with '?', and could instead be tricked into connecting to a different host.7.5Dec 22, 2016
• CVE-2012-5821Lynx does not verify that the server's certificate is signed by a trusted certification authority, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate, related t...5.9Nov 4, 2012
• CVE-2010-2810Heap-based buffer overflow in the convert_to_idna function in WWW/Library/Implementation/HTParse.c in Lynx 2.8.8dev.1 through 2.8.8dev.4 allows remote attackers to cause a denial of service (applic...6.8Aug 20, 2010
• CVE-2006-7234Untrusted search path vulnerability in Lynx before 2.8.6rel.4 allows local users to execute arbitrary code via malicious (1) .mailcap and (2) mime.types files in the current working directory.4.6Oct 27, 2008
• CVE-2008-4690lynx 2.8.6dev.15 and earlier, when advanced mode is enabled and lynx is configured as a URL handler, allows remote attackers to execute arbitrary commands via a crafted lynxcgi: URL, a related issu...10.0Oct 22, 2008