|
From: | Thomas Dickey |
Subject: | RE: [Lynx-dev] RE: FW: iDEFENSE Security Advisory [IDEF1089] Multiple Vendor Lynx Command Injection Vulnerability |
Date: | Sat, 29 Oct 2005 21:27:14 -0400 (EDT) |
On Fri, 28 Oct 2005, Greg MacManus wrote:
Hi, That looks like it will do it. The original vulnerability discoverer wishes to be credited as 'vade79', so he should probably be credited instead of me.
There's an (incremental of course) patch for this in http://lynx.isc.org/lynx2.8.5/patches/2.8.5rel.5.patch.gzI'll do something for dev.15 tomorrow (maybe just that fix - depends on time).
-- Thomas E. Dickey http://invisible-island.net ftp://invisible-island.net
[Prev in Thread] | Current Thread | [Next in Thread] |