Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: Lynx user? Upgrade it! SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Lynx user? Upgrade it!
If you are a lynx user, prepare yourself to upgrade it.
According to an advisory from iDefense, there is a Command Injection Vulnerability on it, that "could allow attackers to execute arbitrary commands with the privileges of the underlying user.".

Some patch links:

Development version 2.8.6dev.15 has been released to address this issue
and is available from the following URLs:

Alternately, an incremental patch is available at:

Handler on Duty: Pedro Bueno (pbueno //%%// isc. sans. org)

155 Posts
ISC Handler
Nov 15th 2005

Sign Up for Free or Log In to start participating in the conversation!