rxvt-unicode 9.22, rxvt 2.7.10, mrxvt 0.5.4, and Eterm 0.9.7 allow (potentially remote) code execution because of improper handling of certain escape sequences (ESC G Q). A response is terminated by a newline.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
eterm project eterm 0.9.7 |
||
mrxvt project mrxvt 0.5.4 |
||
rxvt project rxvt 2.7.10 |
||
rxvt-unicode project rxvt-unicode 9.22 |
||
fedoraproject fedora 33 |
||
fedoraproject fedora 34 |
||
debian debian linux 9.0 |