CVE-2005-3120 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2005-3120 Interim 1 5 2024-02-04T02:50:50Z current 2021-05-30T12:33:39Z 2024-02-04T02:50:50Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2005-3120 Stack-based buffer overflow in the HTrjis function in Lynx 2.8.6 and earlier allows remote NNTP servers to execute arbitrary code via certain article headers containing Asian characters that cause Lynx to add extra escape (ESC) characters. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/YAGRPEIWGJJNIDU7NNTFGAUKKEEVXB5B/#YAGRPEIWGJJNIDU7NNTFGAUKKEEVXB5B E-Mail link for SUSE-SR:2005:025 https://www.suse.com/support/security/rating/ SUSE Security Ratings Stack-based buffer overflow in the HTrjis function in Lynx 2.8.6 and earlier allows remote NNTP servers to execute arbitrary code via certain article headers containing Asian characters that cause Lynx to add extra escape (ESC) characters. CVE-2005-3120 critical 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H