CVE-2016-9426

Severity CVSS v4.0:
Pending analysis
Type:
CWE-190 Integer Overflow or Wraparound
Publication date:
12/12/2016
Last modified:
12/04/2025

Description

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Integer overflow vulnerability in the renderTable function in w3m allows remote attackers to cause a denial of service (OOM) and possibly execute arbitrary code due to bdwgc's bug (CVE-2016-9427) via a crafted HTML page.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:tats:w3m:*:*:*:*:*:*:*:* 0.5.3-30 (including)