Sam James

33 exploits Active since Dec 2016
CVE-2016-9442 WRITEUP MEDIUM WRITEUP
Tats W3m < 0.5.3-30 - Memory Corruption
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause memory corruption in certain conditions via a crafted HTML page.
CVSS 6.5
CVE-2021-42341 WRITEUP HIGH WRITEUP
OpenRC 0.44.0-0.44.7 - Memory Corruption via Incorrect String Length Calculation
checkpath in OpenRC before 0.44.7 uses the direct output of strlen() to allocate strings, which does not account for the '\0' byte at the end of the string. This results in memory corruption. CVE-2021-42341 was introduced in git commit 63db2d99e730547339d1bdd28e8437999c380cae, which was introduced as part of OpenRC 0.44.0 development.
CVSS 7.5
CVE-2016-9422 WRITEUP HIGH WRITEUP
Tats W3m < 0.5.3-30 - Memory Corruption
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. The feed_table_tag function in w3m doesn't properly validate the value of table span, which allows remote attackers to cause a denial of service (stack and/or heap buffer overflow) and possibly execute arbitrary code via a crafted HTML page.
CVSS 8.8
CVE-2016-9423 WRITEUP HIGH WRITEUP
Tats W3m < 0.5.3-30 - Memory Corruption
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML page.
CVSS 8.8
CVE-2016-9424 WRITEUP HIGH WRITEUP
Tats W3m < 0.5.3-30 - Memory Corruption
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m doesn't properly validate the value of tag attribute, which allows remote attackers to cause a denial of service (heap buffer overflow crash) and possibly execute arbitrary code via a crafted HTML page.
CVSS 8.8
CVE-2016-9425 WRITEUP HIGH WRITEUP
Tats W3m < 0.5.3-30 - Memory Corruption
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in the addMultirowsForm function in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML page.
CVSS 8.8
CVE-2016-9426 WRITEUP HIGH WRITEUP
tats/w3m < 0.5.3-30 - Integer Overflow in renderTable Function
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Integer overflow vulnerability in the renderTable function in w3m allows remote attackers to cause a denial of service (OOM) and possibly execute arbitrary code due to bdwgc's bug (CVE-2016-9427) via a crafted HTML page.
CVSS 8.8
CVE-2016-9428 WRITEUP HIGH WRITEUP
Tats W3m < 0.5.3-30 - Memory Corruption
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in the addMultirowsForm function in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML page.
CVSS 8.8
CVE-2016-9429 WRITEUP HIGH WRITEUP
Tats W3m < 0.5.3-30 - Memory Corruption
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Buffer overflow in the formUpdateBuffer function in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML page.
CVSS 8.8
CVE-2016-9430 WRITEUP MEDIUM WRITEUP
Tats W3m < 0.5.3-30 - NULL Pointer Dereference
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
CVSS 6.5
CVE-2016-9431 WRITEUP MEDIUM WRITEUP
Tats W3m < 0.5.3-30 - Memory Corruption
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page.
CVSS 6.5
CVE-2016-9432 WRITEUP MEDIUM WRITEUP
tats w3m < 0.5.3-30 - Denial of Service via Crafted HTML Page
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (memory corruption, segmentation fault, and crash) via a crafted HTML page.
CVSS 6.5
CVE-2016-9433 WRITEUP MEDIUM WRITEUP
Tats W3m < 0.5.3-30 - Out-of-Bounds Read
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (out-of-bounds array access) via a crafted HTML page.
CVSS 6.5
CVE-2016-9434 WRITEUP MEDIUM WRITEUP
tats/w3m < 0.5.3-30 - Denial of Service via Crafted HTML Page
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
CVSS 6.5
CVE-2016-9437 WRITEUP MEDIUM WRITEUP
tats/w3m < 0.5.3-30 - Denial of Service via Crafted HTML Page
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) and possibly memory corruption via a crafted HTML page.
CVSS 6.5
CVE-2016-9438 WRITEUP MEDIUM WRITEUP
Tats W3m < 0.5.3-30 - NULL Pointer Dereference
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
CVSS 6.5
CVE-2016-9439 WRITEUP MEDIUM WRITEUP
Tats W3m < 0.5.3-30 - Memory Corruption
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page.
CVSS 6.5
CVE-2016-9440 WRITEUP MEDIUM WRITEUP
tats/w3m < 0.5.3-30 - Denial of Service via Crafted HTML Page
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
CVSS 6.5
CVE-2016-9441 WRITEUP MEDIUM WRITEUP
Tats W3m < 0.5.3-30 - NULL Pointer Dereference
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
CVSS 6.5
CVE-2016-9443 WRITEUP MEDIUM WRITEUP
Tats W3m < 0.5.3-30 - NULL Pointer Dereference
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
CVSS 6.5
CVE-2016-9622 WRITEUP MEDIUM WRITEUP
Tats W3m < 0.5.3-32 - NULL Pointer Dereference
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
CVSS 6.5
CVE-2016-9623 WRITEUP MEDIUM WRITEUP
tats/w3m < 0.5.3-32 - Denial of Service via Crafted HTML Page
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
CVSS 6.5
CVE-2016-9624 WRITEUP MEDIUM WRITEUP
tats/w3m < 0.5.3-32 - Denial of Service via Crafted HTML Page
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
CVSS 6.5
CVE-2016-9625 WRITEUP MEDIUM WRITEUP
tats/w3m < 0.5.3-32 - Denial of Service via Infinite Recursion
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page.
CVSS 6.5
CVE-2016-9626 WRITEUP MEDIUM WRITEUP
Tats W3m < 0.5.3-32 - Memory Corruption
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page.
CVSS 6.5