Family: Fedora Local Security Checks --> Category: infos
Fedora Core 5 2007-078: w3m Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the w3m package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory FEDORA-2007-078 (w3m).
The w3m program is a pager (or text file viewer) that can also be used
as a text-mode Web browser. W3m features include the following: when
reading an HTML document, you can follow links and view images using
an external image viewer
its internet message mode acertains the
type of document from the header
if the Content-Type field of the
document is text/html, the document is displayed as an HTML document
you can change a URL description like 'http://hogege.net' in plain
text into a link to that URL.
If you want to display the inline images on w3m, you need to install
w3m-img package as well.
- Resolves: rh#221484: CVE-2006-6772 w3m is vulnerable to
format string attack via CN field of SSL/TLS certificate
when infoked with -dump/-backend
Solution : Get the newest Fedora Updates
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.