Vulnerability in eterm 0.8.8 in Debian GNU/Linux allows an attacker to gain root privileges.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| michael_jennings | eterm | 0.8.8 |
xterm, Eterm, and rxvt allow an attacker to cause a denial of service by embedding certain escape characters which force the window to be resized.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| xfree86_project | x11r6 | 4.0 |
| putty | putty | 0.48 |
| rxvt | rxvt | 2.6.1 |
| michael_jennings | eterm | 0.8.10 |
| xfree86_project | x11r6 | 3.3.3 |
Buffer overflow in Eterm of Enlightenment Imlib2 1.0.4 and earlier allows local users to execute arbitrary code via a long HOME environment variable.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| enlightenment | imlib | 2.1.0.1 |
| enlightenment | imlib | 2.1.0.2 |
| enlightenment | imlib | 2.1.0.4 |
| enlightenment | imlib | 2.0.01.0.0 |
| michael_jennings | eterm | 0.9.1 |
| enlightenment | imlib | 2.1.0.3 |
The "screen dump" feature in Eterm 0.9.1 and earlier allows attackers to overwrite arbitrary files via a certain character escape sequence when it is echoed to a user's terminal, e.g. when the user views a file containing the malicious sequence.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| michael_jennings | eterm | 0.9.1 |
| michael_jennings | eterm | 0.8.10 |
The Eterm terminal emulator 0.9.1 and earlier allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary commands.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| michael_jennings | eterm | 0.9.1 |
| michael_jennings | eterm | 0.8.10 |
Buffer overflow in Eterm 0.9.2 allows local users to gain privileges via a long ETERMPATH environment variable.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| michael_jennings | eterm | 0.9.1 |
| debian | debian_linux | 3.0 |
| debian | debian_linux | 2.3 |
| michael_jennings | eterm | 0.9.2 |