[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

USN-703-1 -- xterm vulnerability

ID: oval:org.secpod.oval:def:700389Date: (C)2011-05-13   (M)2023-11-09
Class: PATCHFamily: unix




Paul Szabo discovered that the DECRQSS escape sequences were not handled correctly by xterm. Additionally, window title operations were also not safely handled. If a user were tricked into viewing a specially crafted series of characters while in xterm, a remote attacker could execute arbitrary commands with user privileges

Platform:
Ubuntu 7.10
Ubuntu 8.04
Ubuntu 6.06
Ubuntu 8.10
Product:
xterm
Reference:
USN-703-1
CVE-2006-7236
CVE-2008-2383
CVE-2008-2382
CVE    3
CVE-2008-2382
CVE-2008-2383
CVE-2006-7236
CPE    4
cpe:/o:ubuntu:ubuntu_linux:8.04
cpe:/o:ubuntu:ubuntu_linux:7.10
cpe:/o:ubuntu:ubuntu_linux:8.10
cpe:/o:ubuntu:ubuntu_linux:6.06
...
XCCDF    1
xccdf_com.secpod_benchmark_sample-definitions

© SecPod Technologies