CVE-2008-2383

EPSS 1.7%

xterm - remote code execution

發布日:2009/1/2修改日:2026/4/28

描述

CRLF injection vulnerability in xterm allows user-assisted attackers to execute arbitrary commands via LF (aka \n) characters surrounding a command name within a Device Control Request Status String (DECRQSS) escape sequence in a text file, a related issue to CVE-2003-0063 and CVE-2003-0071.

受影響套件(2)

參考連結(1)