[oss-security] CVE request:Lynx invalid URL parsing with '?'

November 4, 2016 007admin Leave a comment

Posted by redrain root on Nov 04

I can’t find any bugtracker in lynx ,so i will disclose by this mail and
sent to the author dickey () invisible-island net.

redrain (rootredrain () gmail com)
Date:2016-11-03
Version: 2.8.8pre.4、2.8.9dev.8 and earlier
Platform: Linux and Windows
Vendor: http://lynx.browser.org/
Vendor Notified: 2016-11-03

VULNERABILITY
————————-

Lynx doesn’t parse the authority component of the URL correctly when the
host
name part…

007 Software

[oss-security] CVE request:Lynx invalid URL parsing with '?'

Leave a Reply Cancel reply

Software and Security Information