59 matches found
EUVD-2003-0066
Malware in sbrugna...
EUVD-2010-2717
Malware in sbrugna...
EUVD-2011-2188
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2011-2198
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The insert-blank-characters capability in caps.c in gnome-terminal vte before 0.28.1 allows remote authenticated users to cause a denial of service CPU and memo...
OESA-2024-1803 vte291 security update
VTE provides a virtual terminal widget for GTK applications.VTE is mainly used in gnome-terminal, but can also be used to embed a console/terminal in games, editors, IDEs, etc. Security Fixes: GNOME VTE before 0.76.3 allows an attacker to cause a denial of service memory consumption via a window...
mutter bug fix update
An update is available for mutter. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Mutter is a compositing window manager that displays and manages desktop throu...
SUSE CVE-2003-0070
VTE, as used by default in gnome-terminal terminal emulator 2.2 and as an option in gnome-terminal 2.0, allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containin...
SUSE CVE-2012-2738
The VteTerminal in gnome-terminal vte before 0.32.2 allows remote authenticated users to cause a denial of service long loop and CPU consumption via an escape sequence with a large repeat count value...
ANSI Escape Sequence Injection
Description Injection of escape sequences opens up the possibility for concealing / modifying viewed data, and code execution as some esc seqs feed data back to stdin. Proof of Concept poc So far, the places I managed to find a successful injection are: - when running id from the file name - func...
new packages: gnome-terminal
An update is available for gnome-terminal. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Lin...
OESA-2022-1648 vte security update
VTE is a terminal emulator widget for use with GTK+ 2.0. Security Fixes: The VteTerminal in gnome-terminal vte before 0.32.2 allows remote authenticated users to cause a denial of service long loop and CPU consumption via an escape sequence with a large repeat count value.CVE-2012-2738...
hackerEnv - An Automation Tool That Quickly And Easily Sweep IPs And Scan Ports, Vulnerabilities And Exploit Them
hackerEnv is an automation tool that quickly and easily sweep IPs and scan ports, vulnerabilities and exploit them. Then, it hands you an interactive shell for further testing. Also, it generates HTML and docx reports. It uses other tools such as nmap, nikto, metasploit and hydra. Works in kali...
GNOME security, bug fix, and enhancement update
accountsservice 0.6.50-8 - Dont set HasNoUsers=true if realmd has providers Related: 1750516 appstream-data 8-20191129 - Regenerate the RHEL metadata to include the latest evince changes - Resolves: 1768461 clutter 1.26.2-8 - rebuild to get the new in 8.2.0 - plus address 1785233 evince 3.28.4-4 ...
X11 Keyboard Command Injection
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "\x0a", '2' = "\x0b", '3' = "\x0c", '4' = "\x0d", '5' = "\x0e", '6' = "\x0f", '7' = "\x10", '&' = "\x10", '8' = "\x11", '9' = "\x12",...
openSUSE Security Update : gnome-terminal (openSUSE-SU-2012:0933-1)
Add vte-CVE-2012-2738.patch: fix potential DoS through malicious escape sequences. Fix bnc772761, CVE-2012-2738. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-472. The text...
openSUSE Security Update : vte/gnome-terminal (openSUSE-SU-2012:0931-1)
Add vte-CVE-2011-2198.patch: fix memory exhaustion through malicious escape sequences. Fix bnc699214, CVE-2011-2198 openSUSE 11.4 only. - Add vte-CVE-2012-2738.patch: fix potential DoS through malicious escape sequences. Fix bnc772761, CVE-2012-2738. %NASLMINLEVEL 70300 C Tenable Network...
CVE-2011-2198
The "insert-blank-characters" capability in caps.c in gnome-terminal vte before 0.28.1 allows remote authenticated users to cause a denial of service CPU and memory consumption and crash via a crafted file, as demonstrated by a file containing the string "\033100000000000000000@"...
DEBIAN-CVE-2011-2198
The "insert-blank-characters" capability in caps.c in gnome-terminal vte before 0.28.1 allows remote authenticated users to cause a denial of service CPU and memory consumption and crash via a crafted file, as demonstrated by a file containing the string "\033100000000000000000@"...
CVE-2011-2198
The "insert-blank-characters" capability in caps.c in gnome-terminal vte before 0.28.1 allows remote authenticated users to cause a denial of service CPU and memory consumption and crash via a crafted file, as demonstrated by a file containing the string "\033100000000000000000@"...
CVE-2011-2198
The "insert-blank-characters" capability in caps.c in gnome-terminal vte before 0.28.1 allows remote authenticated users to cause a denial of service CPU and memory consumption and crash via a crafted file, as demonstrated by a file containing the string "\033100000000000000000@"...