VTE vulnerability

2010-07-1500:00:00

ubuntu.com

7.3 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.052 Low

EPSS

Percentile

92.9%

JSON

Releases

Ubuntu 10.04
Ubuntu 9.10
Ubuntu 9.04

Packages

vte - Terminal emulator widget for GTK+ 2.0

Details

Janne Snabb discovered that applications using VTE, such as gnome-terminal,
did not correctly filter window and icon title request escape codes. If a
user were tricked into viewing specially crafted output in their terminal,
a remote attacker could execute arbitrary commands with user privileges.

OSVersionArchitecturePackageVersionFilename
Ubuntu9.10noarchlibvte9< 1:0.22.2-0ubuntu2.1UNKNOWN
Ubuntu9.10noarchlibvte-dev< 1:0.22.2-0ubuntu2.1UNKNOWN
Ubuntu9.10noarchlibvte9-udeb< 1:0.22.2-0ubuntu2.1UNKNOWN
Ubuntu9.10noarchpython-vte< 1:0.22.2-0ubuntu2.1UNKNOWN
Ubuntu9.10noarchpython-vte-dbg< 1:0.22.2-0ubuntu2.1UNKNOWN
Ubuntu9.04noarchlibvte9< 1:0.20.0-0ubuntu2.1UNKNOWN
Ubuntu9.04noarchlibvte-dev< 1:0.20.0-0ubuntu2.1UNKNOWN
Ubuntu9.04noarchlibvte9-udeb< 1:0.20.0-0ubuntu2.1UNKNOWN
Ubuntu9.04noarchpython-vte< 1:0.20.0-0ubuntu2.1UNKNOWN
Ubuntu9.04noarchpython-vte-dbg< 1:0.20.0-0ubuntu2.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	9.10	noarch	libvte9	< 1:0.22.2-0ubuntu2.1	UNKNOWN
Ubuntu	9.10	noarch	libvte-dev	< 1:0.22.2-0ubuntu2.1	UNKNOWN
Ubuntu	9.10	noarch	libvte9-udeb	< 1:0.22.2-0ubuntu2.1	UNKNOWN
Ubuntu	9.10	noarch	python-vte	< 1:0.22.2-0ubuntu2.1	UNKNOWN
Ubuntu	9.10	noarch	python-vte-dbg	< 1:0.22.2-0ubuntu2.1	UNKNOWN
Ubuntu	9.04	noarch	libvte9	< 1:0.20.0-0ubuntu2.1	UNKNOWN
Ubuntu	9.04	noarch	libvte-dev	< 1:0.20.0-0ubuntu2.1	UNKNOWN
Ubuntu	9.04	noarch	libvte9-udeb	< 1:0.20.0-0ubuntu2.1	UNKNOWN
Ubuntu	9.04	noarch	python-vte	< 1:0.20.0-0ubuntu2.1	UNKNOWN
Ubuntu	9.04	noarch	python-vte-dbg	< 1:0.20.0-0ubuntu2.1	UNKNOWN