// For flags

CVE-2005-2929

lynx arbitrary command execution

Severity Score

9.8
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Lynx 2.8.5, and other versions before 2.8.6dev.15, allows remote attackers to execute arbitrary commands via (1) lynxcgi:, (2) lynxexec, and (3) lynxprog links, which are not properly restricted in the default configuration in some environments.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2005-09-15 CVE Reserved
  • 2005-11-18 CVE Published
  • 2024-08-07 CVE Updated
  • 2025-03-30 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (27)
URL Tag Source
http://securityreason.com/securityalert/173 Third Party Advisory
http://securitytracker.com/id?1015195 Vdb Entry
http://support.avaya.com/elmodocs2/security/ASA-2006-035.htm X_refsource_confirm
http://www.securityfocus.com/bid/15395 Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/23119 Vdb Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9712 Signature
URL Date SRC
URL Date SRC
http://www.idefense.com/application/poi/display?id=338&type=vulnerabilities 2018-10-19
URL Date SRC
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.7/SCOSA-2006.7.txt 2018-10-19
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.55/SCOSA-2005.55.txt 2018-10-19
http://secunia.com/advisories/17372 2018-10-19
http://secunia.com/advisories/17512 2018-10-19
http://secunia.com/advisories/17546 2018-10-19
http://secunia.com/advisories/17556 2018-10-19
http://secunia.com/advisories/17576 2018-10-19
http://secunia.com/advisories/17666 2018-10-19
http://secunia.com/advisories/17757 2018-10-19
http://secunia.com/advisories/18051 2018-10-19
http://secunia.com/advisories/18376 2018-10-19
http://secunia.com/advisories/18659 2018-10-19
http://www.gentoo.org/security/en/glsa/glsa-200511-09.xml 2018-10-19
http://www.mandriva.com/security/advisories?name=MDKSA-2005:211 2018-10-19
http://www.openpkg.org/security/OpenPKG-SA-2005.026-lynx.html 2018-10-19
http://www.redhat.com/support/errata/RHSA-2005-839.html 2018-10-19
http://www.securityfocus.com/archive/1/419763/100/0/threaded 2018-10-19
http://www.vupen.com/english/advisories/2005/2394 2018-10-19
https://access.redhat.com/security/cve/CVE-2005-2929 2005-11-12
https://bugzilla.redhat.com/show_bug.cgi?id=172972 2005-11-12
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
University Of Kansas
Search vendor "University Of Kansas"
 Lynx
Search vendor "University Of Kansas" for product "Lynx"
 2.8.5
Search vendor "University Of Kansas" for product "Lynx" and version "2.8.5"
-
Affected
University Of Kansas
Search vendor "University Of Kansas"
 Lynx
Search vendor "University Of Kansas" for product "Lynx"
 2.8.6
Search vendor "University Of Kansas" for product "Lynx" and version "2.8.6"
-
Affected
University Of Kansas
Search vendor "University Of Kansas"
 Lynx
Search vendor "University Of Kansas" for product "Lynx"
 2.8.6_dev13
Search vendor "University Of Kansas" for product "Lynx" and version "2.8.6_dev13"
-
Affected