Description
rxvt-unicode before 9.20 does not properly handle OSC escape sequences, which allows user-assisted remote attackers to manipulate arbitrary X window properties and execute arbitrary commands.
Analysis and contextual insights are available on OpenCVE Cloud.
Remediation
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
Debian DSA |
DSA-2925-1 | rxvt-unicode security update |
EUVD |
EUVD-2014-3141 | rxvt-unicode before 9.20 does not properly handle OSC escape sequences, which allows user-assisted remote attackers to manipulate arbitrary X window properties and execute arbitrary commands. |
References
History
No history.
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-06T10:35:56.677Z
Reserved: 2014-04-29T00:00:00.000Z
Link: CVE-2014-3121
No data.
Status : Modified
Published: 2014-05-14T00:55:10.133
Modified: 2026-06-17T00:07:37.803
Link: CVE-2014-3121
No data.
OpenCVE Enrichment
No data.
Weaknesses
Debian DSA
EUVD