Lucene search

K

[email protected]NVD:CVE-2003-0066

HistoryMar 03, 2003 - 5:00 a.m.

CVE-2003-0066

2003-03-0305:00:00

[email protected]

web.nvd.nist.gov

1

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

75.7%

The rxvt terminal emulator 2.7.8 and earlier allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user’s terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary commands.

Affected configurations

NVD

Node

rxvtrxvtMatch2.6.1

OR

rxvtrxvtMatch2.6.2

OR

rxvtrxvtMatch2.6.3

OR

rxvtrxvtMatch2.6.4

OR

rxvtrxvtMatch2.7.5

OR

rxvtrxvtMatch2.7.6

OR

rxvtrxvtMatch2.7.7

OR

rxvtrxvtMatch2.7.8

References

archives.neohapsis.com/archives/vulnwatch/2003-q1/0093.html

marc.info/?l=bugtraq&m=104612710031920&w=2

www.iss.net/security_center/static/11414.php

www.mandrakesoft.com/security/advisories?name=MDKSA-2003:003

www.redhat.com/support/errata/RHSA-2003-054.html

www.redhat.com/support/errata/RHSA-2003-055.html

www.securityfocus.com/advisories/5137

www.securityfocus.com/bid/6953

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

75.7%

Related for NVD:CVE-2003-0066

cvelist1 debiancve1 cve1 ubuntucve1 nessus3 redhat1 securityvulns1