xfce4-terminal vulnerability

ID USN-497-1
Type ubuntu
Reporter Ubuntu
Modified 2007-08-14T00:00:00


Lasse Kärkkäinen discovered that the Xfce Terminal did not correctly
escape shell meta-characters during "Open Link" actions. If a remote
attacker tricked a user into opening a specially crafted URI, they could
execute arbitrary commands with the user's privileges.