Package: w3m Severity: grave Tags: security | Format string vulnerability in the inputAnswer function in file.c in | w3m before 0.5.2 allows remote attackers to cause a denial of | service (application crash) and possibly execute arbitrary code via | format string specifiers in the CN field in an SSL certificate | associated with an https URL.
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3125> Please mention the name CVE-2007-3125 in the changelog when fixing this bug. Thanks! -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]