xfce4-terminal vulnerability

2007-08-14T00:00:00
ID USN-497-1
Type ubuntu
Reporter Ubuntu
Modified 2007-08-14T00:00:00

Description

Lasse Kärkkäinen discovered that the Xfce Terminal did not correctly
escape shell meta-characters during "Open Link" actions. If a remote
attacker tricked a user into opening a specially crafted URI, they could
execute arbitrary commands with the user's privileges.