lynx < 2.8.6rel.4 - Unauthenticated Remote Code Execution via Malicious .mailcap or mime.types Files
Untrusted search path vulnerability in Lynx before 2.8.6rel.4 allows local users to execute arbitrary code via malicious (1) .mailcap and (2) mime.types files in the current working directory.
Python 2.4 and 2.5 - Off-by-one Error in PyLocale_strxfrm
Off-by-one error in the PyLocale_strxfrm function in Modules/_localemodule.c for Python 2.4 and 2.5 causes an incorrect buffer size to be used for the strxfrm function, which allows context-dependent attackers to read portions of memory via unknown manipulations that trigger a buffer over-read due to missing null termination.