Symlink Attack Vulnerability in w3m through 0.5.3

Symlink Attack Vulnerability in w3m through 0.5.3

CVE-2018-6198 · LOW Severity

AV:L/AC:M/AU:N/C:N/I:P/A:P

w3m through 0.5.3 does not properly handle temporary files when the ~/.w3m directory is unwritable, which allows a local attacker to craft a symlink attack to overwrite arbitrary files.

Learn more about our Web Application Penetration Testing UK.