- Home
- CVEs with nessus.description==From+Red+Hat+Security+Advisory+2013%3A0250+%3A%0A%0AAn+updated+elinks+package+that+fixes+one+security+issue+is+now+available+for+Red+Hat+Enterprise+Linux+5+and+6.%0A%0AThe+Red+Hat+Security+Response+Team+has+rated+this+update+as+having+moderate+security+impact.+A+Common+Vulnerability+Scoring+System+%28CVSS%29+base+score%2C+which+gives+a+detailed+severity+rating%2C+is+available+from+the+CVE+link+in+the+References+section.%0A%0AELinks+is+a+text-based+web+browser.+ELinks+does+not+display+any+images%2C+but+it+does+support+frames%2C+tables%2C+and+most+other+HTML+tags.%0A%0AIt+was+found+that+ELinks+performed+client+credentials+delegation+during+the+client-to-server+GSS+security+mechanisms+negotiation.+A+rogue+server+could+use+this+flaw+to+obtain+the+client%27s+credentials+and+impersonate+that+client+to+other+servers+that+are+using+GSSAPI.%0A%28CVE-2012-4545%29%0A%0AThis+issue+was+discovered+by+Marko+Myllynen+of+Red+Hat.%0A%0AAll+ELinks+users+are+advised+to+upgrade+to+this+updated+package%2C+which+contains+a+backported+patch+to+resolve+the+issue
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top