[SECURITY] Fedora 7 Update: xfce4-panel-4.4.2-1.fc7

This package includes the panel for the Xfce desktop environment...

[SECURITY] Fedora 7 Update: mousepad-0.2.13-1.fc7

Mousepad is a text editor for Xfce based on Leafpad. The initial reason for Mousepad was to provide printing support, which would have been difficult for Leafpad for various reasons. Although some features are under development, currently Mousepad has follow ing features: Complete support for UTF...

[SECURITY] Fedora 7 Update: xfce4-mixer-4.4.2-1.fc7

Volume control plugin for the Xfce 4 panel...

[SECURITY] Fedora 7 Update: xfprint-4.4.2-1.fc7

xfprint contains a print dialog and a printer manager for the Xfce 4 Desktop Environment...

[SECURITY] Fedora 7 Update: xfce4-icon-theme-4.4.2-1.fc7

Icon theme for Xfce 4 Desktop Environment...

[SECURITY] Fedora 7 Update: gtk-xfce-engine-2.4.2-1.fc7

Port of Xfce engine to GTK+-2.0...

[SECURITY] Fedora 7 Update: Thunar-0.9.0-2.fc7

Thunar is a new modern file manager for the Xfce Desktop Environment. It has been designed from the ground up to be fast and easy-to-use. Its user interface is clean and intuitive, and does not include any confusing or useless options. Thunar is fast and responsive with a good start up time and...

[SECURITY] Fedora 7 Update: xfdesktop-4.4.2-1.fc7

This package includes a desktop manager for the XFce Desktop Environment...

[SECURITY] Fedora 7 Update: xfce4-weather-plugin-0.6.2-2.fc7

A weather plugin for the Xfce panel. It shows the current temperature and weather condition, using weather data provided by xoap.weather.com...

[SECURITY] Fedora 7 Update: xfce4-cpugraph-plugin-0.4.0-2.fc7

A CPU monitor plugin for the Xfce panel. It offers multiple display modes LED, gradient, fire, etc... to show the current CPU load of the system. T he colors and the size of the plugin are customizable...

[SECURITY] Fedora 7 Update: xfce4-sensors-plugin-0.10.99.2-3.fc7

This plugin displays various hardware sensor values in the Xfce panel...

USN-497-1: xfce4-terminal vulnerability

Lasse Kärkkäinen discovered that the Xfce Terminal did not correctly escape shell meta-characters during "Open Link" actions. If a remote attacker tricked a user into opening a specially crafted URI, they could execute arbitrary commands with the user's privileges...

Xfce-Terminal远程命令注入漏洞

BUGTRAQ ID: 24889 CVECAN ID: CVE-2007-3770 Xfce Terminal是Xfce桌面环境的控制台工具。 Xfce Terminal在使用URL串构造命令调用时存在漏洞，远程攻击者可能利用此漏洞诱使用户执行恶意Shell命令。 Xfce-Terminal 0.2.6 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.xfce.org/ http://foo.bar/$xterm/ http://google.com/search?q=$ls&sourceid=b0rk...

Xfce terminal client unescaped shell characters vulnerability

Shell characters are not filtered on URL processing...

[ GLSA 200708-07 ] Xfce Terminal: Remote arbitrary code execution

Gentoo Linux Security Advisory GLSA 200708-07 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...

GLSA-200708-07 : Xfce Terminal: Remote arbitrary code execution

The remote host is affected by the vulnerability described in GLSA-200708-07 Xfce Terminal: Remote arbitrary code execution Lasse Karkkainen discovered that the function terminalhelperexecute in file terminal-helper.c does not properly escape the URIs before processing. Impact : A remote attacker...

Xfce Terminal: Remote arbitrary code execution

Background Xfce Terminal is a console tool for the Xfce desktop environment. Description Lasse Karkkainen discovered that the function terminalhelperexecute in file terminal-helper.c does not properly escape the URIs before processing. Impact A remote attacker could entice a user to open a...

CVE-2007-3770

The terminalhelperexecute function in terminal/terminal.c in Xfce Terminal 0.2.6 allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a crafted link, as demonstrated using the "Open Link" functionality...

DEBIAN-CVE-2007-3770

The terminalhelperexecute function in terminal/terminal.c in Xfce Terminal 0.2.6 allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a crafted link, as demonstrated using the "Open Link" functionality...

CVE-2007-3770

The terminalhelperexecute function in terminal/terminal.c in Xfce Terminal 0.2.6 allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a crafted link, as demonstrated using the "Open Link" functionality...