140 matches found
Mandriva Linux Security Advisory : rxvt-unicode (MDVSA-2014:094)
Updated rxvt-unicode package fixes security vulnerability : rxvt-unicode aka urxvt before 9.20 is vulnerable to a user-assisted arbitrary commands execution issue. This can be exploited by the unprocessed display of certain escape sequences in a crafted text file or program output. Arbitrary...
Fedora Update for rxvt-unicode FEDORA-2014-5939
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for rxvt-unicode FEDORA-2014-5938
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DEBIAN-CVE-2014-3121
rxvt-unicode before 9.20 does not properly handle OSC escape sequences, which allows user-assisted remote attackers to manipulate arbitrary X window properties and execute arbitrary commands...
CVE-2014-3121
rxvt-unicode before 9.20 does not properly handle OSC escape sequences, which allows user-assisted remote attackers to manipulate arbitrary X window properties and execute arbitrary commands...
Command injection
rxvt-unicode before 9.20 does not properly handle OSC escape sequences, which allows user-assisted remote attackers to manipulate arbitrary X window properties and execute arbitrary commands...
CVE-2014-3121
rxvt-unicode before 9.20 does not properly handle OSC escape sequences, which allows user-assisted remote attackers to manipulate arbitrary X window properties and execute arbitrary commands...
CVE-2014-3121
rxvt-unicode before 9.20 does not properly handle OSC escape sequences, which allows user-assisted remote attackers to manipulate arbitrary X window properties and execute arbitrary commands...
CVE-2014-3121
CVE-2014-3121 affects rxvt-unicode (urxvt) before version 9.20, where OSC escape sequences are not handled correctly. This can allow a remote attacker to manipulate X window properties and potentially execute arbitrary code via a crafted file or remote interaction. Multiple advisories (OpenVAS, S...
Fedora 20 : rxvt-unicode-9.20-1.fc20 (2014-5939)
Update to 9.20: http://cvs.schmorp.de/rxvt-unicode/Changes - Fix CVE-2014-3121: user-assisted arbitrary commands execution Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...
Fedora 19 : rxvt-unicode-9.20-1.fc19 (2014-5938)
Update to 9.20: http://cvs.schmorp.de/rxvt-unicode/Changes - Fix CVE-2014-3121: user-assisted arbitrary commands execution Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...
[SECURITY] [DSA 2925-1] rxvt-unicode security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2925-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 08, 2014 http://www.debian.org/security/faq -...
Debian DSA-2925-1 : rxvt-unicode - security update
Phillip Hallam-Baker discovered that window property values could be queried in rxvt-unicode, resulting in the potential execution of arbitrary commands. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security...
[SECURITY] [DSA 2925-1] rxvt-unicode security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2925-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 08, 2014 http://www.debian.org/security/faq -...
DSA-2925-1 rxvt-unicode - security update
Bulletin has no description...
Debian Security Advisory DSA 2925-1 (rxvt-unicode - security update)
Phillip Hallam-Baker discovered that window property values could be queried in rxvt-unicode, resulting in the potential execution of arbitrary commands. OpenVAS Vulnerability Test $Id: deb2925.nasl 6759 2017-07-19 09:56:33Z teissa $ Auto-generated from advisory DSA 2925-1 using nvtgen 1.0 Script...
Debian: Security Advisory (DSA-2925-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2014-0202 Updated rxvt-unicode packages fix CVE-2014-3121
Updated rxvt-unicode package fixes security vulnerability: rxvt-unicode aka urxvt before 9.20 is vulnerable to a user-assisted arbitrary commands execution issue. This can be exploited by the unprocessed display of certain escape sequences in a crafted text file or program output. Arbitrary comma...
Updated rxvt-unicode packages fix CVE-2014-3121
Updated rxvt-unicode package fixes security vulnerability: rxvt-unicode aka urxvt before 9.20 is vulnerable to a user-assisted arbitrary commands execution issue. This can be exploited by the unprocessed display of certain escape sequences in a crafted text file or program output. Arbitrary comma...
openSUSE Security Update : rxvt-unicode (rxvt-unicode-163)
It was possible to open a terminal on :0 when the environment variable was not set. This could be exploited by local users to hijack X11 connections CVE-2008-1142. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...