Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2006-6772

Format string vulnerability in the inputAnswer function in file.c in w3m before 0.5.2, when run with the dump or backend option, allows remote attackers to execute arbitrary code via format string specifiers in the Common Name (CN) field of an SSL certificate associated with an https URL.

Published

2006-12-27T23:28:00.000

Last Modified

2025-04-09T00:30:58.490

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 9.3 (HIGH)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

8.6

Impact Score

10.0

Weaknesses

Type: Primary
CWE-134

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	w3m	w3m	0.5.1	Yes

References

http://fedoranews.org/cms/node/2415 ([email protected])
http://fedoranews.org/cms/node/2416 ([email protected])
http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051457.html ([email protected])
http://secunia.com/advisories/23492 Vendor Advisory ([email protected])
http://secunia.com/advisories/23588 Vendor Advisory ([email protected])
http://secunia.com/advisories/23717 Vendor Advisory ([email protected])
http://secunia.com/advisories/23773 Vendor Advisory ([email protected])
http://secunia.com/advisories/23792 Vendor Advisory ([email protected])
http://security.gentoo.org/glsa/glsa-200701-06.xml ([email protected])
http://securitytracker.com/id?1017440 ([email protected])
http://sourceforge.net/tracker/index.php?func=detail&aid=1612792&group_id=39518&atid=425439 ([email protected])
http://w3m.cvs.sourceforge.net/%2Acheckout%2A/w3m/w3m/NEWS?revision=1.79 ([email protected])
http://w3m.cvs.sourceforge.net/w3m/w3m/file.c?r1=1.249&r2=1.250 ([email protected])
http://w3m.cvs.sourceforge.net/w3m/w3m/file.c?view=log ([email protected])
http://www.novell.com/linux/security/advisories/2007_05_w3m.html ([email protected])
http://www.openpkg.com/security/advisories/OpenPKG-SA-2006.044.html ([email protected])
http://www.securityfocus.com/bid/21735 ([email protected])
http://www.securityfocus.com/bid/24332 ([email protected])
http://www.ubuntu.com/usn/usn-399-1 ([email protected])
http://www.vupen.com/english/advisories/2006/5164 Vendor Advisory ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/31114 ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/34821 ([email protected])
http://fedoranews.org/cms/node/2415 (af854a3a-2127-422b-91ae-364da2661108)
http://fedoranews.org/cms/node/2416 (af854a3a-2127-422b-91ae-364da2661108)
http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051457.html (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/23492 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/23588 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/23717 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/23773 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/23792 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://security.gentoo.org/glsa/glsa-200701-06.xml (af854a3a-2127-422b-91ae-364da2661108)
http://securitytracker.com/id?1017440 (af854a3a-2127-422b-91ae-364da2661108)
http://sourceforge.net/tracker/index.php?func=detail&aid=1612792&group_id=39518&atid=425439 (af854a3a-2127-422b-91ae-364da2661108)
http://w3m.cvs.sourceforge.net/%2Acheckout%2A/w3m/w3m/NEWS?revision=1.79 (af854a3a-2127-422b-91ae-364da2661108)
http://w3m.cvs.sourceforge.net/w3m/w3m/file.c?r1=1.249&r2=1.250 (af854a3a-2127-422b-91ae-364da2661108)
http://w3m.cvs.sourceforge.net/w3m/w3m/file.c?view=log (af854a3a-2127-422b-91ae-364da2661108)
http://www.novell.com/linux/security/advisories/2007_05_w3m.html (af854a3a-2127-422b-91ae-364da2661108)
http://www.openpkg.com/security/advisories/OpenPKG-SA-2006.044.html (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/21735 (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/24332 (af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/usn-399-1 (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2006/5164 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/31114 (af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/34821 (af854a3a-2127-422b-91ae-364da2661108)