Detections
Analytics
Lynx Command Line URL CRLF Injection
low Log Correlation Engine Plugin ID 800972
Synopsis
N/ADescription
The remote host is using Lynx as a web browser. The version used is vulnerable to a command line header injection which may allow an attacker to use Lynx to send potentially harmful requests. An attacker may use this flaw to attack third party hosts even from a limited (ie: lynx-only) environment.Solution
No solution is known at this time.Plugin Details
Severity: Low
ID: 800972
Family: Web Clients
Reference Information
CVE: CVE-2002-1405
BID: 5499