CVE-2006-6772 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-6772
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-6772

Description: Format string vulnerability in the inputAnswer function in file.c in w3m before 0.5.2, when run with the dump or backend option, allows remote attackers to execute arbitrary code via format string specifiers in the Common Name (CN) field of an SSL certificate associated with an https URL.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/31114 http://xforce.iss.net/xforce/xfdb/34821 UBUNTU http://www.ubuntu.com/usn/usn-399-1 SUSE http://www.novell.com/linux/security/advisories/2007_05_w3m.html ST 1017440 SAID Secunia Advisory: SA23492 Secunia Advisory: SA23588 Secunia Advisory: SA23717 Secunia Advisory: SA23773 Secunia Advisory: SA23792 OPENPKG http://www.openpkg.com/security/advisories/OpenPKG-SA-2006.044.html MISC http://sourceforge.net/tracker/index.php?func=detail&aid=1612792&group_id=39518&atid=425439 GENTOO http://security.gentoo.org/glsa/glsa-200701-06.xml FULLDISC http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051457.html FEDORA http://fedoranews.org/cms/node/2416 http://fedoranews.org/cms/node/2415 CONFIRM http://w3m.cvs.sourceforge.net/w3m/w3m/file.c?r1=1.249&r2=1.250 http://w3m.cvs.sourceforge.net/w3m/w3m/file.c?view=log http://w3m.cvs.sourceforge.net/checkout/w3m/w3m/NEWS?revision=1.79 BID 21735 24332

Return to the previous page.