Required CVE Record Information
Description
The aterm terminal emulator 0.42 allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary commands.
References 3 Total
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 3 Total
- marc.info: 20030224 Terminal Emulator Security Issues mailing-listx_transferred
- iss.net: terminal-emulator-window-title(11414) vdb-entryx_transferred
- archives.neohapsis.com: 20030224 Terminal Emulator Security Issues mailing-listx_transferred