CVE-2008-7224
elinks - arbitrary code execution
EPSS 0.82%
Description
Buffer overflow in entity_cache in ELinks before 0.11.4rc0 allows remote attackers to cause a denial of service (crash) via a crafted link.
How to fix CVE-2008-7224
To remediate CVE-2008-7224, upgrade the affected package to a fixed version below.
- Debian/elinks—upgrade to 0.11.3-1 or later
- Debian/elinks—upgrade to 0.11.1-1.2etch2 or later
Is CVE-2008-7224 being exploited?
Low — EPSS is 0.8%, meaning exploitation activity has not been observed at scale.
Affected packages (2)
- from 0, < 0.11.3-1
- from 0, < 0.11.1-1.2etch2