The "insert-blank-characters" capability in caps.c in gnome-terminal (vte) prior to 0.28.1 allows remote authenticated users to cause a denial of service (CPU and memory consumption and crash) via a crafted file, as demonstrated by a file containing the string "\033[100000000000000000@".
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gnome gnome-terminal |
||
opensuse opensuse 12.1 |
||
opensuse opensuse 11.4 |
||
oracle solaris 11.2 |