Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The default configuration of xterm on Debian GNU/Linux sid and possibly Ubuntu enables the allowWindowOps resource, which allows user-assisted attackers to execute arbitrary code or have unspecified other impact via escape sequences.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Invisible-Island xterm DECRQSS请求远程命令执行漏洞
Vulnerability Description
xterm程序是X窗口系统的终端模拟器,可为无法直接使用窗口系统的程序提供DEC VT102与Tektronix 4014 兼容的终端。 Debian GNU/Linux sid或Ubuntu的xterm的默认配置启用了allowWindowOps资源,这将允许用户辅助的攻击者利用逸出序列运行任意代码或带来其它未指定的影响。
CVSS Information
N/A
Vulnerability Type
N/A