An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. The feed_table_tag function in w3m doesn't properly validate the value of table span, which allows remote attackers to cause a denial of service (stack and/or heap buffer overflow) and possibly execute arbitrary code via a crafted HTML page.
Metrics
Affected Vendors & Products
References
History
Thu, 14 Nov 2024 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2016-12-12T02:00:00
Updated: 2024-11-14T19:48:54.282Z
Reserved: 2016-11-18T00:00:00
Link: CVE-2016-9422
Vulnrichment
Updated: 2024-08-06T02:50:38.581Z
NVD
Status : Modified
Published: 2016-12-12T02:59:09.467
Modified: 2024-11-21T03:01:10.293
Link: CVE-2016-9422
Redhat