CVE-2014-3121

EPSS 3.3%

rxvt-unicode - security update

發布日:2014/5/14修改日:2026/4/28

描述

rxvt-unicode before 9.20 does not properly handle OSC escape sequences, which allows user-assisted remote attackers to manipulate arbitrary X window properties and execute arbitrary commands.

受影響套件(2)

Debian/rxvt-unicodefrom 0, < 9.20-1
Debian/rxvt-unicodefrom 0, < 9.07-2+deb6u1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-3121