Fvwm

CVEs (2)

• CVE-2003-1308Dec 31, 2003
  Fvwm

  Fvwm
  risk 0.03cvss —epss 0.01

  CRLF injection vulnerability in fvwm-menu-directory for fvwm 2.5.x before 2.5.10 and 2.4.x before 2.4.18 allows local users to execute arbitrary commands via carriage returns in a filename.

• CVE-2006-5969Nov 17, 2006
  Fvwm

  Fvwm
  risk 0.00cvss —epss 0.00

  CRLF injection vulnerability in the evalFolderLine function in fvwm 2.5.18 and earlier allows local users to execute arbitrary commands via carriage returns in a directory name, which is not properly handled by fvwm-menu-directory, a variant of CVE-2003-1308.