[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Lynx-dev] Re: iDEFENSE Security Advisory [IDEF1089] Multiple Vendor Lyn

From: Thorsten Glaser
Subject: [Lynx-dev] Re: iDEFENSE Security Advisory [IDEF1089] Multiple Vendor Lynx Command Injection Vulnerability
Date: Thu, 3 Nov 2005 12:26:49 +0000 (UTC)

Greg MacManus dixit:


>Other vendors are suspected as also being vulnerable. The following
>vendors include Lynx packages that are not susceptible to exploitation
>as the "lynxcgi" feature is not compiled into Lynx by default:
>    * The FreeBSD Project
>    * OpenBSD 

The MirOS Project (another BSD) also does not compile in lynxcgi
support, according to the PoC exploit.

> emacs als auch vi zum Kotzen finde (joe rules) und pine für den einzig
> bedienbaren textmode-mailclient halte (und ich hab sie alle ausprobiert). ;)
Hallooooo, ich bin der Holger ("Hallo Holger!"), und ich bin ebenfalls
... pine-User, und das auch noch gewohnheitsmäßig ("Oooooooohhh").  [aus dasr]

reply via email to

[Prev in Thread] Current Thread [Next in Thread]