An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. The feed_table_tag function in w3m doesn't properly validate the value of table span, which allows remote attackers to cause a denial of service (stack and/or heap buffer overflow) and possibly execute arbitrary code via a crafted HTML page.
Max CVSS
8.8
EPSS Score
1.39%
Published
2016-12-12
Updated
2023-12-29
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML page.
Max CVSS
8.8
EPSS Score
1.39%
Published
2016-12-12
Updated
2023-12-29
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m doesn't properly validate the value of tag attribute, which allows remote attackers to cause a denial of service (heap buffer overflow crash) and possibly execute arbitrary code via a crafted HTML page.
Max CVSS
8.8
EPSS Score
1.39%
Published
2016-12-12
Updated
2023-12-29
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in the addMultirowsForm function in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML page.
Max CVSS
8.8
EPSS Score
1.39%
Published
2016-12-12
Updated
2023-12-29
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Integer overflow vulnerability in the renderTable function in w3m allows remote attackers to cause a denial of service (OOM) and possibly execute arbitrary code due to bdwgc's bug (CVE-2016-9427) via a crafted HTML page.
Max CVSS
8.8
EPSS Score
1.58%
Published
2016-12-12
Updated
2023-12-29
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in the addMultirowsForm function in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML page.
Max CVSS
8.8
EPSS Score
1.39%
Published
2016-12-12
Updated
2023-12-29
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Buffer overflow in the formUpdateBuffer function in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML page.
Max CVSS
8.8
EPSS Score
1.39%
Published
2016-12-12
Updated
2023-12-29
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
Max CVSS
6.5
EPSS Score
0.84%
Published
2016-12-12
Updated
2023-12-29
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page.
Max CVSS
6.5
EPSS Score
0.78%
Published
2016-12-12
Updated
2023-12-29
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (memory corruption, segmentation fault, and crash) via a crafted HTML page.
Max CVSS
6.5
EPSS Score
0.78%
Published
2016-12-12
Updated
2023-12-29
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (out-of-bounds array access) via a crafted HTML page.
Max CVSS
6.5
EPSS Score
0.84%
Published
2016-12-12
Updated
2023-12-29
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
Max CVSS
6.5
EPSS Score
0.84%
Published
2016-12-12
Updated
2023-12-29
The HTMLtagproc1 function in file.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via a crafted html file, related to <dd> tags.
Max CVSS
6.5
EPSS Score
0.62%
Published
2017-01-20
Updated
2023-12-29
parsetagx.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via a crafted html file, related to a <i> tag.
Max CVSS
6.5
EPSS Score
0.38%
Published
2017-01-20
Updated
2023-12-29
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) and possibly memory corruption via a crafted HTML page.
Max CVSS
6.5
EPSS Score
0.78%
Published
2016-12-12
Updated
2023-12-29
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
Max CVSS
6.5
EPSS Score
0.84%
Published
2016-12-12
Updated
2023-12-29
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page.
Max CVSS
6.5
EPSS Score
0.78%
Published
2016-12-12
Updated
2023-12-29
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
Max CVSS
6.5
EPSS Score
0.84%
Published
2016-12-12
Updated
2023-12-29
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
Max CVSS
6.5
EPSS Score
0.84%
Published
2016-12-12
Updated
2023-12-29
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause memory corruption in certain conditions via a crafted HTML page.
Max CVSS
6.5
EPSS Score
0.71%
Published
2016-12-12
Updated
2023-12-29
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!