Lynx 2.x does not properly distinguish between internal and external HTML, which may allow a local attacker to read a secure hidden form value from a temporary file and craft a LYNXOPTIONS: URL that causes Lynx to modify the users configuration file and execute commands.
Weakness
The product does not properly verify that the source of data or communication is valid.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Lynx | Lynx_project | 2.7 (including) | 2.7 (including) |
| Lynx | Lynx_project | 2.8 (including) | 2.8 (including) |
Related Attack Patterns
- https://cwe.mitre.org/data/definitions/111.html
- https://cwe.mitre.org/data/definitions/141.html
- https://cwe.mitre.org/data/definitions/142.html
- https://cwe.mitre.org/data/definitions/160.html
- https://cwe.mitre.org/data/definitions/21.html
- https://cwe.mitre.org/data/definitions/384.html
- https://cwe.mitre.org/data/definitions/385.html
- https://cwe.mitre.org/data/definitions/386.html
- https://cwe.mitre.org/data/definitions/387.html
- https://cwe.mitre.org/data/definitions/388.html
- https://cwe.mitre.org/data/definitions/510.html
- https://cwe.mitre.org/data/definitions/59.html
- https://cwe.mitre.org/data/definitions/60.html
- https://cwe.mitre.org/data/definitions/75.html
- https://cwe.mitre.org/data/definitions/76.html
- https://cwe.mitre.org/data/definitions/89.html
References
- http://marc.info/?l=bugtraq\u0026m=94286509804526\u0026w=2
- http://www.securityfocus.com/bid/804
- http://marc.info/?l=bugtraq\u0026m=94286509804526\u0026w=2
- http://www.securityfocus.com/bid/804