Mandrake Linux Security Advisory : lynx (MDKSA-2005:211)
High Nessus Plugin ID 20444
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionAn arbitrary command execution vulnerability was discovered in the lynx 'lynxcgi:' URI handler. An attacker could create a web page that redirects to a malicious URL which could then execute arbitrary code as the user running lynx.
The updated packages have been patched to address this issue.
SolutionUpdate the affected lynx package.