Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Lynx, lynx-ssl, and lynx-cur before 2.8.6dev.8 allow remote attackers to cause a denial of service (infinite loop) via a web page or HTML email that contains invalid HTML including (1) a TEXTAREA tag with a large COLS value and (2) a large tag name in an element that is not terminated, as demonstrated by mangleme. NOTE: a followup suggests that the relevant trigger for this issue is the large COLS value.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Lynx Malformed HTML无限循环服务拒绝漏洞
Vulnerability Description
Lynx,lynx-ssl,lynx-cur2.8.6 dev.8之前的版本存在漏洞。远程攻击者可以借助包含无效HTML的网页或HTML邮件导致服务拒绝(无限循环),包括(1)带有超大COLS值的TEXTAREA标签和(2)未终止元素的超大标签名。
CVSS Information
N/A
Vulnerability Type
N/A