W3M Malformed MIME Header Buffer Overflow Vulnerability

W3M is a pager/text-based WWW browser similiar to lynx.

A buffer overflow vulnerability exists in the 'w3m' client program. The overflow occurs when a base64-encoded string exceeding approximately 32 characters in length is received in a MIME header field. As a result, it may be possible for a malicious remote server to execute arbitrary code on a user's system.


 

Privacy Statement
Copyright 2010, SecurityFocus