Arbitrary code execution vulnerability in git in Red HatID: oval:org.secpod.oval:def:44749 | Date: (C)2018-03-21 (M)2023-12-20 |
Class: VULNERABILITY | Family: unix |
It was found that the Git client printed server-sent ANSI escape codes to the terminal without any sanitization, leading to execution of arbitrary escape sequences in the terminal emulator. Exploitation of this flaw by a MitM attacker could potentially result in code execution, arbitrary file writes, or other attacks under highly specific circumstances dependent on the usage of a vulnerable terminal emulator by the user.
Platform: |
Red Hat Enterprise Linux 7 |