PT-2018-17401 · Nihon University+3 · W3M+3

Published

2018-01-24

Updated

2024-06-15

CVE-2018-6196

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions w3m versions prior to 0.5.4

Description The issue is related to an infinite recursion flaw in the HTMLlineproc0 function due to the feed table block tag function in table.c not preventing a negative indent value.

Recommendations For versions prior to 0.5.4, update to version 0.5.4 or later to resolve the issue.

Exploit

Fix

Infinite Loop

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-835

Related Identifiers

ALT-PU-2020-3081

ALT-PU-2020-3099

CVE-2018-6196

DLA-2195-1

MGASA-2018-0312

OPENSUSE-SU-2019_1142-1

OPENSUSE-SU-2024:11504-1

SUSE-SU-2019:0776-1

SUSE-SU-2019_0776-1

USN-3555-1

USN-3555-2

Affected Products

Alt Linux

Suse

Ubuntu

W3M

PT-2018-17401 · Nihon University+3 · W3M+3

CVE-2018-6196

Weakness Enumeration

Related Identifiers

Affected Products

References · 34