ELinks 'entity_cache' HTML File Off By One Buffer Overflow Vulnerability

ELinks 'entity_cache' HTML File Off By One Buffer Overflow Vulnerability

ELinks is prone to an off-by-one buffer-overflow vulnerability because the application fails to accurately reference the last element of a buffer.

Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.

Versions prior to ELinks 0.11.4 are vulnerable.