CVSS: 6.8EPSS: 1%CPEs: 1EXPL: 0CVE-2010-2074 – w3m: doesn't handle NULL in Common Name properly
https://notcve.org/view.php?id=CVE-2010-2074
16 Jun 2010 — istream.c in w3m 0.5.2 and possibly other versions, when ssl_verify_server is enabled, does not properly handle a '\0' character in a domain name in the (1) subject's Common Name or (2) Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408. istream.c en w3m v0.5.2 y posiblemente otras versiones, cuando ssl_verify_server está acti... • http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044401.html • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 13%CPEs: 1EXPL: 0CVE-2006-6772
https://notcve.org/view.php?id=CVE-2006-6772
27 Dec 2006 — Format string vulnerability in the inputAnswer function in file.c in w3m before 0.5.2, when run with the dump or backend option, allows remote attackers to execute arbitrary code via format string specifiers in the Common Name (CN) field of an SSL certificate associated with an https URL. Vulnerabilidad de cadena de formato en la función inputAnswer en file.c de w3m 0.5.2, cuando se ejecuta con la opción de volcado (dump) o backend, permite a atacantes remotos ejecutar código de su elección mediante especif... • http://fedoranews.org/cms/node/2415 • CWE-134: Use of Externally-Controlled Format String •
CVSS: 7.5EPSS: 1%CPEs: 12EXPL: 0CVE-2002-1348
https://notcve.org/view.php?id=CVE-2002-1348
19 Feb 2003 — w3m before 0.3.2.2 does not properly escape HTML tags in the ALT attribute of an IMG tag, which could allow remote attackers to access files or cookies. w3m anteriores a 0.3.2.2 no escapan adecuadamente las etiquetas HTML en el atributo ALT de una etiqueta IMG, lo que podría permitir a atacantes remotos acceder ficheros o cookies • http://marc.info/?l=bugtraq&m=104552193927323&w=2 •
CVSS: 6.1EPSS: 1%CPEs: 1EXPL: 0CVE-2002-1335
https://notcve.org/view.php?id=CVE-2002-1335
03 Dec 2002 — Cross-site scripting (XSS) vulnerability in w3m 0.3.2 does not escape an HTML tag in a frame, which allows remote attackers to insert arbitrary web script or HTML and access files or cookies. Vulnerabilidad de scripting en sitios cruzados (XSS) en w3m 0.3.2 permite a atacantes remotos insertar HTML arbitrario y script web en marcos. • http://mi.med.tohoku.ac.jp/~satodai/w3m-dev-en/200211.month/838.html •
CVSS: 9.8EPSS: 13%CPEs: 9EXPL: 2CVE-2001-0700 – W3M 0.1/0.2 - Malformed MIME Header Buffer Overflow
https://notcve.org/view.php?id=CVE-2001-0700
20 Sep 2001 — Buffer overflow in w3m 0.2.1 and earlier allows a remote attacker to execute arbitrary code via a long base64 encoded MIME header. • https://www.exploit-db.com/exploits/20941 •