CVE-2006-7234

N/A Unknown
Published: October 27, 2008 Modified: April 23, 2026
View on NVD

Description

Untrusted search path vulnerability in Lynx before 2.8.6rel.4 allows local users to execute arbitrary code via malicious (1) .mailcap and (2) mime.types files in the current working directory.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=396949
Source: secalert@redhat.com
http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html
Source: secalert@redhat.com
http://secunia.com/advisories/32407
Source: secalert@redhat.com
http://secunia.com/advisories/32416
Source: secalert@redhat.com
http://secunia.com/advisories/33568
Source: secalert@redhat.com
http://www.mandriva.com/security/advisories?name=MDVSA-2008:217
Source: secalert@redhat.com
http://www.openwall.com/lists/oss-security/2008/10/25/3
Source: secalert@redhat.com
http://www.redhat.com/support/errata/RHSA-2008-0965.html
Source: secalert@redhat.com
http://www.securityfocus.com/bid/31917
Source: secalert@redhat.com
http://www.securitytracker.com/id?1021107
Source: secalert@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=214205
Source: secalert@redhat.com
https://exchange.xforce.ibmcloud.com/vulnerabilities/46132
Source: secalert@redhat.com
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9719
Source: secalert@redhat.com
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=396949
Source: af854a3a-2127-422b-91ae-364da2661108
http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/32407
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/32416
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/33568
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.mandriva.com/security/advisories?name=MDVSA-2008:217
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.openwall.com/lists/oss-security/2008/10/25/3
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.redhat.com/support/errata/RHSA-2008-0965.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/31917
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securitytracker.com/id?1021107
Source: af854a3a-2127-422b-91ae-364da2661108
https://bugzilla.redhat.com/show_bug.cgi?id=214205
Source: af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/46132
Source: af854a3a-2127-422b-91ae-364da2661108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9719
Source: af854a3a-2127-422b-91ae-364da2661108

26 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
0.1%
34th percentile
Exploitation Status
Not in CISA KEV

Affected Vendors

lynx