2 matches found
Design/Logic Flaw
The vtesequencehandlerwindowmanipulation function in vteseq.c in libvte aka libvte9 in VTE 0.25.1 and earlier, as used in gnome-terminal, does not properly handle escape sequences, which allows remote attackers to execute arbitrary commands or obtain potentially sensitive information via a 1 wind...
CVE-2010-2713
The CVE-2010-2713 issue affects VTE (libvte) up to version 0.25.1 (and earlier) used by gnome-terminal. The vulnerability resides in vteseq.c: The vte_sequence_handler_window_manipulation function mishandles escape sequences, enabling a remote attacker to execute arbitrary commands or obtain sens...