cbcvebase.

Tats W3M vulnerabilities

44 known vulnerabilities affecting tats/w3m.

Total CVEs
44
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH10MEDIUM33

Vulnerabilities

Page 1 of 3
CVE-2016-9428P3HIGHCVSS 8.8≤ 0.5.3-302016-12-12
CVE-2016-9428 [HIGH] CWE-119 CVE-2016-9428: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflo An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in the addMultirowsForm function in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML page.
nvdosv
CVE-2016-9429P3HIGHCVSS 8.8≤ 0.5.3-302016-12-12
CVE-2016-9429 [HIGH] CWE-119 CVE-2016-9429: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Buffer overflow in the fo An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Buffer overflow in the formUpdateBuffer function in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML page.
nvdosv
CVE-2016-9425P3HIGHCVSS 8.8≤ 0.5.3-302016-12-12
CVE-2016-9425 [HIGH] CWE-119 CVE-2016-9425: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflo An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in the addMultirowsForm function in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML page.
nvdosv
CVE-2016-9423P3HIGHCVSS 8.8≤ 0.5.3-302016-12-12
CVE-2016-9423 [HIGH] CWE-119 CVE-2016-9423: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflo An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML page.
nvdosv
CVE-2016-9422P3HIGHCVSS 8.8≤ 0.5.3-302016-12-12
CVE-2016-9422 [HIGH] CWE-119 CVE-2016-9422: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. The feed_table_tag functi An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. The feed_table_tag function in w3m doesn't properly validate the value of table span, which allows remote attackers to cause a denial of service (stack and/or heap buffer overflow) and possibly execute arbitrary code via a crafted HTML page.
nvdosv
CVE-2006-6772P3CRITICALCVSS 9.3≥ 0, < 0.5.1-5.12006-12-27
CVE-2006-6772 [CRITICAL] CVE-2006-6772: Format string vulnerability in the inputAnswer function in file Format string vulnerability in the inputAnswer function in file.c in w3m before 0.5.2, when run with the dump or backend option, allows remote attackers to execute arbitrary code via format string specifiers in the Common Name (CN) field of an SSL certificate associated with an https URL.
osv
CVE-2016-9424P3HIGHCVSS 8.8≤ 0.5.3-302016-12-12
CVE-2016-9424 [HIGH] CWE-119 CVE-2016-9424: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m doesn't properly vali An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m doesn't properly validate the value of tag attribute, which allows remote attackers to cause a denial of service (heap buffer overflow crash) and possibly execute arbitrary code via a crafted HTML page.
nvdosv
CVE-2016-9426P3HIGHCVSS 8.8≤ 0.5.3-302016-12-12
CVE-2016-9426 [HIGH] CWE-190 CVE-2016-9426: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Integer overflow vulnerab An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Integer overflow vulnerability in the renderTable function in w3m allows remote attackers to cause a denial of service (OOM) and possibly execute arbitrary code due to bdwgc's bug (CVE-2016-9427) via a crafted HTML page.
nvdosv
CVE-2018-6197P3HIGHCVSS 7.5≤ 0.5.32018-01-25
CVE-2018-6197 [HIGH] CWE-476 CVE-2018-6197: w3m through 0.5.3 is prone to a NULL pointer dereference flaw in formUpdateBuffer in form.c. w3m through 0.5.3 is prone to a NULL pointer dereference flaw in formUpdateBuffer in form.c.
nvdosv
CVE-2018-6196P3HIGHCVSS 7.5≤ 0.5.32018-01-25
CVE-2018-6196 [HIGH] CWE-835 CVE-2018-6196: w3m through 0.5.3 is prone to an infinite recursion flaw in HTMLlineproc0 because the feed_table_blo w3m through 0.5.3 is prone to an infinite recursion flaw in HTMLlineproc0 because the feed_table_block_tag function in table.c does not prevent a negative indent value.
nvdosv
CVE-2022-38223P4HIGHCVSS 7.8v0.5.32022-08-15
CVE-2022-38223 [HIGH] CWE-787 CVE-2022-38223: There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by s There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by sending a crafted HTML file to the w3m binary. It allows an attacker to cause Denial of Service or possibly have unspecified other impact.
nvdosv
CVE-2016-9435P4MEDIUMCVSS 6.5≤ 0.5.3\+git201607182017-01-20
CVE-2016-9435 [MEDIUM] CWE-20 CVE-2016-9435: The HTMLtagproc1 function in file.c in w3m before 0.5.3+git20161009 does not properly initialize val The HTMLtagproc1 function in file.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via a crafted html file, related to tags.
nvdosv
CVE-2010-2074P4MEDIUMCVSS 5.9≥ 0, < 0.5.2-52010-06-16
CVE-2010-2074 [MEDIUM] CVE-2010-2074: istream istream.c in w3m 0.5.2 and possibly other versions, when ssl_verify_server is enabled, does not properly handle a '\0' character in a domain name in the (1) subject's Common Name or (2) Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
osv
CVE-2016-9436P4MEDIUMCVSS 6.5≤ 0.5.3\+git201607182017-01-20
CVE-2016-9436 [MEDIUM] CWE-20 CVE-2016-9436: parsetagx.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote parsetagx.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via a crafted html file, related to a tag.
nvdosv
CVE-2016-9442P4MEDIUMCVSS 6.5≤ 0.5.3-302016-12-12
CVE-2016-9442 [MEDIUM] CWE-119 CVE-2016-9442: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attacke An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause memory corruption in certain conditions via a crafted HTML page.
nvdosv
CVE-2016-9627P4MEDIUMCVSS 6.5≤ 0.5.3-322016-12-12
CVE-2016-9627 [MEDIUM] CWE-119 CVE-2016-9627: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attacke An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (heap buffer overflow and crash) via a crafted HTML page.
nvdosv
CVE-2016-9433P4MEDIUMCVSS 6.5≤ 0.5.3-302016-12-12
CVE-2016-9433 [MEDIUM] CWE-125 CVE-2016-9433: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attacke An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (out-of-bounds array access) via a crafted HTML page.
nvdosv
CVE-2016-9630P4MEDIUMCVSS 6.5≤ 0.5.3-322016-12-12
CVE-2016-9630 [MEDIUM] CWE-119 CVE-2016-9630: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attacke An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (global buffer overflow and crash) via a crafted HTML page.
nvdosv
CVE-2016-9632P4MEDIUMCVSS 6.5≤ 0.5.3-322016-12-12
CVE-2016-9632 [MEDIUM] CWE-119 CVE-2016-9632: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attacke An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (global buffer overflow and crash) via a crafted HTML page.
nvdosv
CVE-2016-9437P4MEDIUMCVSS 6.5≤ 0.5.3-302016-12-12
CVE-2016-9437 [MEDIUM] CWE-119 CVE-2016-9437: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attacke An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) and possibly memory corruption via a crafted HTML page.
nvdosv
Tats W3M vulnerabilities | cvebase