Unrated severityNVD Advisory· Published Mar 3, 2003· Updated Apr 16, 2026

CVE-2003-0066

Description

The rxvt terminal emulator 2.7.8 and earlier allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary commands.

Affected products

Rxvt/Rxvt8 versions
cpe:2.3:a:rxvt:rxvt:2.6.1:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:rxvt:rxvt:2.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:rxvt:rxvt:2.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:rxvt:rxvt:2.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:rxvt:rxvt:2.6.4:*:*:*:*:*:*:*
- cpe:2.3:a:rxvt:rxvt:2.7.5:*:*:*:*:*:*:*
- cpe:2.3:a:rxvt:rxvt:2.7.6:*:*:*:*:*:*:*
- cpe:2.3:a:rxvt:rxvt:2.7.7:*:*:*:*:*:*:*
- cpe:2.3:a:rxvt:rxvt:2.7.8:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

archives.neohapsis.com/archives/vulnwatch/2003-q1/0093.htmlnvdVendor Advisory
www.iss.net/security_center/static/11414.phpnvdVendor Advisory
marc.infonvd
www.mandrakesoft.com/security/advisoriesnvd
www.redhat.com/support/errata/RHSA-2003-054.htmlnvd
www.redhat.com/support/errata/RHSA-2003-055.htmlnvd
www.securityfocus.com/advisories/5137nvd
www.securityfocus.com/bid/6953nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000