CVE-1999-1549 high

Description

Lynx 2.x does not properly distinguish between internal and external HTML, which may allow a local attacker to read a "secure" hidden form value from a temporary file and craft a LYNXOPTIONS: URL that causes Lynx to modify the user's configuration file and execute commands.

• CVEs and Security Vulnerabilities - OpenCVE
  web:app.opencve.io

  Explore the latest vulnerabilities and security issues in the CVE database

  2026-05-22 20:39 UTC
• CVE Vault - CVE Database & Security Research Hub
  web:cvevault.com

  CVE Vault - Search and explore Common Vulnerabilities and Exposures ( CVE ) database. Find security vulnerabilities by CVE ID, vendor, severity, and year. Stay secure with comprehensive CVE information.

  2026-05-22 20:39 UTC
• Security patch release notes | Adobe Commerce
  web:experienceleague.adobe.com

  The Adobe Commerce security patch release notes provide information about the latest security improvements for supported versions of Adobe Commerce. About security patch releases Security Bug Fix : A software code change that resolves an identified security issue and delivers expected results in an affected product area.

  2026-05-22 20:39 UTC
• Security Update Guide - Microsoft
  web:msrc.microsoft.com

  The Microsoft Security Response Center (MSRC) investigates all reports of security vulnerabilities affecting Microsoft products and services, and provides the information here as part of the ongoing effort to help you manage security risks and help keep your systems protected.

  2026-05-22 20:39 UTC
• CVE: Common Vulnerabilities and Exposures
  web:www.cve.org

  At cve .org, we provide the authoritative reference method for publicly known information-security vulnerabilities and exposures

  2026-05-22 20:39 UTC
• Database CVE, CWE, CISA KEV & Vulnerability Intelligence | CVE Find
  web:www.cvefind.com

  CVE Find is a real-time vulnerability database indexing 351 731 security flaws ( CVE ) from MITRE, NVD, CISA KEV, CWE and CAPEC. 1311 new CVEs were published in the last 7 days. Data aggregated from: MITRE Corporation ( CVE , CWE, CAPEC), National Vulnerability Database - NIST (NVD), CISA Known Exploited Vulnerabilities (KEV), FIRST (EPSS).

  2026-05-22 20:39 UTC
• Fix list for IBM MQ Version 9.4 LTS
  web:www.ibm.com

  IBM MQ provides periodic maintenance releases ( Fix Packs), and Cumulative Security Updates, for Version 9.4.0 Long Term Support (LTS). The following is a complete listing of available fixes grouped by maintenance delivery.

  2026-05-22 20:39 UTC
• Vertex Explosion Fix (disables face customization)
  web:www.nexusmods.com

  This mod aims to fix ( or drastically minimize) vertex explosions on shadps4 by removing certain files related to face customization that the emulator is not currently handling correctly

  2026-05-22 20:39 UTC
• National Vulnerability Database | NIST
  web:www.nist.gov

  NIST maintains the National Vulnerability Database (NVD), a repository of information on software and hardware flaws that can compromise computer security. This is a key piece of the nation's cybersecurity infrastructure.

  2026-05-22 20:39 UTC
• VirusTotal - Home
  web:www.virustotal.com

  VirusTotal is a platform for scanning files and URLs for viruses, malware, and other threats using multiple antivirus engines.

  2026-05-22 20:39 UTC

Indicators of Compromise (0)

No indicators of compromise on this threat.

References (3)

• cve@mitre.org NVD Recent CVEs
• cve@mitre.org NVD Recent CVEs
• NVD detail: CVE-1999-1549 NVD Recent CVEs

  Lynx 2.x does not properly distinguish between internal and external HTML, which may allow a local attacker to read a "secure" hidden form value from a temporary file and craft a LYNXOPTIONS: URL that causes Lynx to modify the user's configuration file and execute commands.

Only Available for Registered Users. Sign in to view.