VDB
CISA-2016-9422
CISA-2016-9422
PUBLISHED
Reported by mitre · Published December 12, 2016
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. The feed_table_tag function in w3m doesn't properly validate the value of table span, which allows remote attackers to cause a denial of service (stack and/or heap buffer overflow) and possibly execute arbitrary code via a crafted HTML page.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | n/a, n/a |
Timeline
- Dec 12, 2016 CVE Published
- Nov 14, 2024 CVE Updated
- Mar 26, 2026 Security Advisory
References
- GLSA-201701-08 vendor-advisoryx_refsource_GENTOO
- x_refsource_CONFIRM
- x_refsource_CONFIRM
- 94407 vdb-entryx_refsource_BID
- [oss-security] 20161118 Re: CVE request: w3m - multiple vulnerabilities mailing-listx_refsource_MLIST