CVE-2003-0024

The menuBar feature in aterm 0.42 allows attackers to modify menu options and execute arbitrary commands via a certain character escape sequence that inserts the commands into the menu...

CVE-2003-0068

The Eterm terminal emulator 0.9.1 and earlier allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker t...

CVE-2000-0703

suidperl aka sperl does not properly cleanse the escape sequence "!" before calling /bin/mail to send an error report, which allows local users to gain privileges by setting the "interactive" environmental variable and calling suidperl with a filename that contains the escape sequence...

CVE-2000-0703

suidperl aka sperl does not properly cleanse the escape sequence "!" before calling /bin/mail to send an error report, which allows local users to gain privileges by setting the "interactive" environmental variable and calling suidperl with a filename that contains the escape sequence...

CVE-2000-0703

CVE-2000-0703 affects suidperl (sperl). The vulnerability arises because suidperl does not properly cleanse the escape sequence "~!" before invoking /bin/mail to report errors. This enables local users to gain privileges by setting the interactive environmental variable and running suidperl with ...

SUIDPerl 5.00503 - Mail Shell Escape (1)

source: https://www.securityfocus.com/bid/1547/info The interaction between some security checks performed by suidperl, the setuid version of perl, and the /bin/mail program creates a scenario that allows local malicious users to execute commands with root privileges. The suidperl program perform...