Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2008-2383
HistoryJan 02, 2009 - 6:11 p.m.

Crlf injection

2009-01-0218:11:00
PRIOn knowledge base
www.prio-n.com
5

7.9 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.013 Low

EPSS

Percentile

85.6%

JSON

CRLF injection vulnerability in xterm allows user-assisted attackers to execute arbitrary commands via LF (aka \n) characters surrounding a command name within a Device Control Request Status String (DECRQSS) escape sequence in a text file, a related issue to CVE-2003-0063 and CVE-2003-0071.

References

Related

cve 4
fedora 5
nessus 26
openvas 57
ubuntucve 4
debiancve 2
osv 3
github 1
debian 3
securityvulns 3
redhat 3
centos 2
freebsd 1
veracode 1
gentoo 1
slackware 1
oraclelinux 1
prion 1
ubuntu 1
threatpost 1
cve
cve
CVE-2008-2383
2009-01-02 18:11:00
CVE-2003-0071
2003-03-03 05:00:00
CVE-2003-0063
2003-03-03 05:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: xterm-238-1.fc10
2009-01-07 09:16:50
[SECURITY] Fedora 8 Update: xterm-238-1.fc8
2009-01-07 09:25:00
[SECURITY] Fedora 9 Update: xterm-238-1.fc9
2009-01-07 09:12:14
nessus
nessus
Fedora 9 : xterm-238-1.fc9 (2009-0059)
2009-01-16 00:00:00
Fedora 38 : kitty (2023-a004ecb3f8)
2023-07-26 00:00:00
Fedora 8 : xterm-238-1.fc8 (2009-0154)
2009-01-16 00:00:00
openvas
openvas
Fedora Core 10 FEDORA-2009-0091 (xterm)
2009-01-07 00:00:00
Fedora Core 8 FEDORA-2009-0154 (xterm)
2009-01-07 00:00:00
Fedora Core 9 FEDORA-2009-0059 (xterm)
2009-01-07 00:00:00
ubuntucve
ubuntucve
CVE-2008-2383
2009-01-02 00:00:00
CVE-2003-0071
2003-03-03 00:00:00
CVE-2003-0063
2003-03-03 00:00:00
debiancve
debiancve
CVE-2008-2383
2009-01-02 18:11:00
CVE-2015-8971
2017-01-23 21:59:00
osv
osv
SwiftTerm Code Injection vulnerability
2023-07-14 21:58:43
xfree86 - buffer overflows, denial of service
2003-09-12 00:00:00
xterm - remote code execution
2009-01-02 00:00:00
github
github
SwiftTerm Code Injection vulnerability
2023-07-14 21:58:43
debian
debian
[SECURITY] [DSA-380-1] New xfree86 packages fix multiple vulnerabilities
2003-09-12 18:55:36
[SECURITY] [DSA 1694-2] New xterm packages fix regression
2009-01-06 11:40:11
[SECURITY] [DSA 1694-1] New xterm packages fix remote code execution
2009-01-02 19:07:44
securityvulns
securityvulns
[RHSA-2003:067-00] Updated XFree86 packages provide security and bug fixes
2003-06-25 00:00:00
Terminal Emulator Security Issues
2003-02-25 00:00:00
About the security content of Security Update 2009-002 / Mac OS X v10.5.7
2009-05-14 00:00:00
redhat
redhat
(RHSA-2003:065) XFree86 security update
2003-06-25 00:00:00
(RHSA-2009:0018) Important: xterm security update
2009-01-07 00:00:00
(RHSA-2009:0019) Important: hanterm-xf security update
2009-01-07 00:00:00
centos
centos
hanterm security update
2009-02-02 23:25:09
xterm security update
2009-01-07 22:24:51
freebsd
freebsd
xterm -- DECRQSS remote command execution vulnerability
2008-12-28 00:00:00
veracode
veracode
CRLF Injection
2020-04-10 00:28:46
gentoo
gentoo
xterm: User-assisted arbitrary commands execution
2009-02-12 00:00:00
slackware
slackware
xterm
2009-03-10 10:26:52
oraclelinux
oraclelinux
xterm security update
2009-01-07 00:00:00
prion
prion
Code injection
2017-01-23 21:59:00
ubuntu
ubuntu
xterm vulnerabilities
2009-01-06 00:00:00
threatpost
threatpost
Apple Mega Patch Covers 88 Mac OS X Vulnerabilities
2010-03-29 17:15:44

7.9 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.013 Low

EPSS

Percentile

85.6%

JSON
Related for PRION:CVE-2008-2383
cve4fedora5nessus26openvas57ubuntucve4debiancve2osv3github1debian3securityvulns3redhat3centos2freebsd1veracode1gentoo1slackware1oraclelinux1prion1ubuntu1threatpost1