CVE-2007-5034
CVE-2007-5034 is a medium-severity vulnerability in Elinks with a CVSS 2.0 base score of 4.3. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low. The underlying weakness is classified as CWE-200.
Key facts
- Severity: Medium (CVSS 2.0 base score 4.3)
- EPSS exploit prediction: 3% (83rd percentile)
- Actively exploited: Not listed in CISA KEV
- Weakness: CWE-200
- Affected product: Elinks
- Published:
- Last modified:
Description
ELinks before 0.11.3, when sending a POST request for an https URL, appends the body and content headers of the POST request to the CONNECT request in cleartext, which allows remote attackers to sniff sensitive data that would have been protected by TLS. NOTE: this issue only occurs when a proxy is defined for https.
Frequently asked questions
- What is CVE-2007-5034?
- ELinks before 0.11.3, when sending a POST request for an https URL, appends the body and content headers of the POST request to the CONNECT request in cleartext, which allows remote attackers to sniff sensitive data that would have been protected by TLS. NOTE: this issue only occurs when a proxy is defined for https.
- How severe is CVE-2007-5034?
- CVE-2007-5034 has a CVSS 2.0 base score of 4.3, rated medium severity.
- Is CVE-2007-5034 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 3% (83rd percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2007-5034?
- CVE-2007-5034 affects Elinks. See the affected-products list for the exact vulnerable versions.
- How do I fix CVE-2007-5034?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- When was CVE-2007-5034 published?
- CVE-2007-5034 was published on 2007-09-21 and last updated on 2026-06-16.
References
- http://bugzilla.elinks.cz/show_bug.cgi?id=937
- http://secunia.com/advisories/26936
- http://secunia.com/advisories/26949
- http://secunia.com/advisories/26956
- http://secunia.com/advisories/27038
- http://secunia.com/advisories/27062
- http://secunia.com/advisories/27125
- http://secunia.com/advisories/27132
- http://www.debian.org/security/2007/dsa-1380
- http://www.redhat.com/support/errata/RHSA-2007-0933.html
- http://www.securityfocus.com/archive/1/481606/100/0/threaded
- http://www.securityfocus.com/bid/25799
- http://www.securitytracker.com/id?1018764
- http://www.ubuntu.com/usn/usn-519-1
- http://www.vupen.com/english/advisories/2007/3278
- https://bugs.launchpad.net/ubuntu/+source/elinks/+bug/141018
- https://bugzilla.redhat.com/show_bug.cgi?id=297981
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10335
- https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00079.html
- https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00335.html
Affected products (1)
- cpe:2.3:a:elinks:elinks:*:*:*:*:*:*:*:*
More vulnerabilities in Elinks
- CVE-2008-7224 — High (CVSS 7.8): Buffer overflow in entity_cache in ELinks before 0.11.4rc0 allows remote attackers to cause a denial of service (crash)…
- CVE-2006-5925 — High (CVSS 7.5): Links web browser 1.00pre12 and Elinks 0.9.2 with smbclient installed allows remote attackers to execute arbitrary code…
- CVE-2012-6709 — Medium (CVSS 5.9): ELinks 0.12 and Twibright Links 2.3 have Missing SSL Certificate Validation.
- CVE-2012-4545 — Medium (CVSS 5.1): The http_negotiate_create_context function in protocol/http/http_negotiate.c in ELinks 0.12 before 0.12pre6, when using…
- CVE-2002-1405 — Medium (CVSS 5.0): CRLF injection vulnerability in Lynx 2.8.4 and earlier allows remote attackers to inject false HTTP headers into an…
- CVE-2007-2027 — Medium (CVSS 4.4): Untrusted search path vulnerability in the add_filename_to_string function in intl/gettext/loadmsgcat.c for Elinks…
Other CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor) vulnerabilities
- CVE-2026-27604 — Critical (CVSS 10.0): FOSSBilling is a free, open-source billing and client management system. Starting in version 0.5.4 and prior to version…
- CVE-2026-40965 — Critical (CVSS 10.0): Cloud Foundry UAA versions v76.12.0 through v78.12.0 are vulnerable to a private key exposure. The server contains a…
- CVE-2026-42826 — Critical (CVSS 10.0): Exposure of sensitive information to an unauthorized actor in Azure DevOps allows an unauthorized attacker to disclose…
- CVE-2025-29270 — Critical (CVSS 10.0): Incorrect access control in the realtime.cgi endpoint of Deep Sea Electronics devices DSE855 v1.1.0 to v1.1.26 allows…
- CVE-2025-61481 — Critical (CVSS 10.0): An issue in MikroTik RouterOS v.7.14.2 and SwOS v.2.18 exposes the WebFig management interface over cleartext HTTP by…
- CVE-2025-53624 — Critical (CVSS 10.0): The Docusaurus gists plugin adds a page to your Docusaurus instance, displaying all public gists of a GitHub user.…
Browse all CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor) vulnerabilities →