8.6 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
69.1%
The default configuration of xterm on Debian GNU/Linux sid and possibly Ubuntu enables the allowWindowOps resource, which allows user-assisted attackers to execute arbitrary code or have unspecified other impact via escape sequences.
nvd.nist.gov/vuln/detail/CVE-2006-7236
www.cve.org/CVERecord?id=CVE-2006-7236