Mattermost allows attackers to manipulate administrator terminals via crafted messages containing ANSI and OSC escape sequences

Mattermost versions 11.2.x = 11.2.2, 10.11.x = 10.11.10, 11.4.x = 11.4.0, 11.3.x = 11.3.1 fail to sanitize user-controlled post content in the mmctl commands terminal output which allows attackers to manipulate administrator terminals via crafted messages containing ANSI and OSC escape sequences...

EUVD-2014-3141

Malware in sbrugna...

Gentoo Security Advisory GLSA 201406-18

Gentoo Linux Local Security Checks GLSA 201406-18 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

GLSA-201406-18 : rxvt-unicode: User-assisted execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-201406-18 rxvt-unicode: User-assisted execution of arbitrary code rxvt-unicode does not properly handle OSC escape sequences, including those used to read and write X window properties. Impact : A remote attacker could entice a us...

DEBIAN-CVE-2014-3121

rxvt-unicode before 9.20 does not properly handle OSC escape sequences, which allows user-assisted remote attackers to manipulate arbitrary X window properties and execute arbitrary commands...

Command injection

rxvt-unicode before 9.20 does not properly handle OSC escape sequences, which allows user-assisted remote attackers to manipulate arbitrary X window properties and execute arbitrary commands...

CVE-2014-3121

CVE-2014-3121 affects rxvt-unicode (urxvt) before version 9.20, where OSC escape sequences are not handled correctly. This can allow a remote attacker to manipulate X window properties and potentially execute arbitrary code via a crafted file or remote interaction. Multiple advisories (OpenVAS, S...