CVE-2005-3120: Buffer Overflow
First published: Mon Oct 17 2005(Updated: )
Stack-based buffer overflow in the HTrjis function in Lynx 2.8.6 and earlier allows remote NNTP servers to execute arbitrary code via certain article headers containing Asian characters that cause Lynx to add extra escape (ESC) characters.
Credit: security@debian.org security@debian.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| University Of Kansas Lynx | =2.8.4 | |
| University Of Kansas Lynx | =2.8.3 | |
| University Of Kansas Lynx | =2.8.6 | |
| University Of Kansas Lynx | =2.8.6_dev13 | |
| Invisible-island Lynx | <=2.8.6 | |
| Debian Debian Linux | =3.0 | |
| Debian Debian Linux | =3.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.grok.org.uk/pipermail/full-disclosure/2005-October/038019.html
- http://www.redhat.com/support/errata/RHSA-2005-803.html
- https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=170253
- http://www.debian.org/security/2005/dsa-874
- http://www.debian.org/security/2005/dsa-876
- http://lists.trustix.org/pipermail/tsl-announce/2005-October/000354.html
- http://secunia.com/advisories/17216
- http://secunia.com/advisories/17360
- http://securitytracker.com/id?1015065
- http://www.securityfocus.com/bid/15117
- http://www.openpkg.org/security/OpenPKG-SA-2005.026-lynx.html
- http://secunia.com/advisories/17445
- http://secunia.com/advisories/18376
- http://secunia.com/advisories/17444
- http://support.avaya.com/elmodocs2/security/ASA-2006-010.htm
- http://www.gentoo.org/security/en/glsa/glsa-200510-15.xml
- http://www.novell.com/linux/security/advisories/2005_25_sr.html
- http://secunia.com/advisories/17150
- http://secunia.com/advisories/17230
- http://secunia.com/advisories/17231
- http://secunia.com/advisories/17238
- http://secunia.com/advisories/17248
- http://secunia.com/advisories/17340
- http://secunia.com/advisories/17480
- http://secunia.com/advisories/18584
- http://slackware.com/security/viewer.php?l=slackware-security&y=2005&m=slackware-security.423056
- http://www.debian.org/security/2006/dsa-1085
- http://secunia.com/advisories/20383
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:186
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9257
- https://usn.ubuntu.com/206-1/
- http://www.securityfocus.com/archive/1/435689/30/4740/threaded
- http://www.securityfocus.com/archive/1/419763/100/0/threaded
- collector/nvd-historical
- vendor/university of kansas
- product/lynx
- canonical/university of kansas lynx
- collector/nvd-index
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/remedy
- agent/author
- agent/references
- agent/event
- agent/description
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- version/university of kansas lynx/2.8.4
- version/university of kansas lynx/2.8.3
- version/university of kansas lynx/2.8.6
- version/university of kansas lynx/2.8.6_dev13
- vendor/invisible-island
- canonical/invisible-island lynx
- version/invisible-island lynx/2.8.6
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/3.0
- version/debian debian linux/3.1