mirror of
https://github.com/0xMarcio/cve.git
synced 2026-03-12 22:16:43 +00:00
825 B
825 B
CVE-2016-9425
Description
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in the addMultirowsForm function in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML page.
POC
Reference
- http://www.securityfocus.com/bid/94407
- https://github.com/tats/w3m/blob/master/ChangeLog
- https://github.com/tats/w3m/issues/21