Tats W3M vulnerabilities
44 known vulnerabilities affecting tats/w3m.
Total CVEs
44
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH10MEDIUM33
Vulnerabilities
Page 1 of 3
CVE-2016-9428P3HIGHCVSS 8.8≤ 0.5.3-302016-12-12
CVE-2016-9428 [HIGH] CWE-119 CVE-2016-9428: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflo
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in the addMultirowsForm function in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML page.
nvdosv
CVE-2016-9429P3HIGHCVSS 8.8≤ 0.5.3-302016-12-12
CVE-2016-9429 [HIGH] CWE-119 CVE-2016-9429: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Buffer overflow in the fo
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Buffer overflow in the formUpdateBuffer function in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML page.
nvdosv
CVE-2016-9425P3HIGHCVSS 8.8≤ 0.5.3-302016-12-12
CVE-2016-9425 [HIGH] CWE-119 CVE-2016-9425: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflo
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in the addMultirowsForm function in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML page.
nvdosv
CVE-2016-9423P3HIGHCVSS 8.8≤ 0.5.3-302016-12-12
CVE-2016-9423 [HIGH] CWE-119 CVE-2016-9423: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflo
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML page.
nvdosv
CVE-2016-9422P3HIGHCVSS 8.8≤ 0.5.3-302016-12-12
CVE-2016-9422 [HIGH] CWE-119 CVE-2016-9422: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. The feed_table_tag functi
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. The feed_table_tag function in w3m doesn't properly validate the value of table span, which allows remote attackers to cause a denial of service (stack and/or heap buffer overflow) and possibly execute arbitrary code via a crafted HTML page.
nvdosv
CVE-2006-6772P3CRITICALCVSS 9.3≥ 0, < 0.5.1-5.12006-12-27
CVE-2006-6772 [CRITICAL] CVE-2006-6772: Format string vulnerability in the inputAnswer function in file
Format string vulnerability in the inputAnswer function in file.c in w3m before 0.5.2, when run with the dump or backend option, allows remote attackers to execute arbitrary code via format string specifiers in the Common Name (CN) field of an SSL certificate associated with an https URL.
osv
CVE-2016-9424P3HIGHCVSS 8.8≤ 0.5.3-302016-12-12
CVE-2016-9424 [HIGH] CWE-119 CVE-2016-9424: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m doesn't properly vali
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m doesn't properly validate the value of tag attribute, which allows remote attackers to cause a denial of service (heap buffer overflow crash) and possibly execute arbitrary code via a crafted HTML page.
nvdosv
CVE-2016-9426P3HIGHCVSS 8.8≤ 0.5.3-302016-12-12
CVE-2016-9426 [HIGH] CWE-190 CVE-2016-9426: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Integer overflow vulnerab
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Integer overflow vulnerability in the renderTable function in w3m allows remote attackers to cause a denial of service (OOM) and possibly execute arbitrary code due to bdwgc's bug (CVE-2016-9427) via a crafted HTML page.
nvdosv
CVE-2018-6197P3HIGHCVSS 7.5≤ 0.5.32018-01-25
CVE-2018-6197 [HIGH] CWE-476 CVE-2018-6197: w3m through 0.5.3 is prone to a NULL pointer dereference flaw in formUpdateBuffer in form.c.
w3m through 0.5.3 is prone to a NULL pointer dereference flaw in formUpdateBuffer in form.c.
nvdosv
CVE-2018-6196P3HIGHCVSS 7.5≤ 0.5.32018-01-25
CVE-2018-6196 [HIGH] CWE-835 CVE-2018-6196: w3m through 0.5.3 is prone to an infinite recursion flaw in HTMLlineproc0 because the feed_table_blo
w3m through 0.5.3 is prone to an infinite recursion flaw in HTMLlineproc0 because the feed_table_block_tag function in table.c does not prevent a negative indent value.
nvdosv
CVE-2022-38223P4HIGHCVSS 7.8v0.5.32022-08-15
CVE-2022-38223 [HIGH] CWE-787 CVE-2022-38223: There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by s
There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by sending a crafted HTML file to the w3m binary. It allows an attacker to cause Denial of Service or possibly have unspecified other impact.
nvdosv
CVE-2016-9435P4MEDIUMCVSS 6.5≤ 0.5.3\+git201607182017-01-20
CVE-2016-9435 [MEDIUM] CWE-20 CVE-2016-9435: The HTMLtagproc1 function in file.c in w3m before 0.5.3+git20161009 does not properly initialize val
The HTMLtagproc1 function in file.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via a crafted html file, related to tags.
nvdosv
CVE-2010-2074P4MEDIUMCVSS 5.9≥ 0, < 0.5.2-52010-06-16
CVE-2010-2074 [MEDIUM] CVE-2010-2074: istream
istream.c in w3m 0.5.2 and possibly other versions, when ssl_verify_server is enabled, does not properly handle a '\0' character in a domain name in the (1) subject's Common Name or (2) Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
osv
CVE-2016-9436P4MEDIUMCVSS 6.5≤ 0.5.3\+git201607182017-01-20
CVE-2016-9436 [MEDIUM] CWE-20 CVE-2016-9436: parsetagx.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote
parsetagx.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via a crafted html file, related to a tag.
nvdosv
CVE-2016-9442P4MEDIUMCVSS 6.5≤ 0.5.3-302016-12-12
CVE-2016-9442 [MEDIUM] CWE-119 CVE-2016-9442: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause memory corruption in certain conditions via a crafted HTML page.
nvdosv
CVE-2016-9627P4MEDIUMCVSS 6.5≤ 0.5.3-322016-12-12
CVE-2016-9627 [MEDIUM] CWE-119 CVE-2016-9627: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (heap buffer overflow and crash) via a crafted HTML page.
nvdosv
CVE-2016-9433P4MEDIUMCVSS 6.5≤ 0.5.3-302016-12-12
CVE-2016-9433 [MEDIUM] CWE-125 CVE-2016-9433: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (out-of-bounds array access) via a crafted HTML page.
nvdosv
CVE-2016-9630P4MEDIUMCVSS 6.5≤ 0.5.3-322016-12-12
CVE-2016-9630 [MEDIUM] CWE-119 CVE-2016-9630: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (global buffer overflow and crash) via a crafted HTML page.
nvdosv
CVE-2016-9632P4MEDIUMCVSS 6.5≤ 0.5.3-322016-12-12
CVE-2016-9632 [MEDIUM] CWE-119 CVE-2016-9632: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (global buffer overflow and crash) via a crafted HTML page.
nvdosv
CVE-2016-9437P4MEDIUMCVSS 6.5≤ 0.5.3-302016-12-12
CVE-2016-9437 [MEDIUM] CWE-119 CVE-2016-9437: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) and possibly memory corruption via a crafted HTML page.
nvdosv
1 / 3Next →