CVE-2016-9633
- Bugzilla:
-
1399740:
CVE-2016-9633 w3m: Memory exhaustion due to repeatedly appending '
'
Last ModifiedThe MITRE CVE dictionary describes this issue as:
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (infinite loop and resource consumption) via a crafted HTML page.Find out more about CVE-2016-9633 from the MITRE CVE dictionary dictionary and NIST NVD.
CVSS v2 metrics
NOTE: The following CVSS v2 metrics and score provided are preliminary and subject to review.
Base Score 4.3 Base Metrics AV:N/AC:M/Au:N/C:N/I:N/A:P Access Vector Network Access Complexity Medium Authentication None Confidentiality Impact None Integrity Impact None Availability Impact Partial CVSS v3 metrics
NOTE: The following CVSS v3 metrics and score provided are preliminary and subject to review.
CVSS3 Base Score 4.3 CVSS3 Base Metrics CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Attack Vector Network Attack Complexity Low Privileges Required None User Interaction Required Scope Unchanged Confidentiality None Integrity Impact None Availability Impact Low Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).
Affected Packages State
Platform Package State Red Hat Enterprise Linux 6 w3m Not affected Red Hat Enterprise Linux 5 w3m Will not fix CVE description copyright © 2017, The MITRE Corporation
