VYPR

Eterm

by Michael Jennings

CVEs (8)

  • CVE-2002-0143Mar 25, 2002
    risk 0.03cvss epss 0.01

    Buffer overflow in Eterm of Enlightenment Imlib2 1.0.4 and earlier allows local users to execute arbitrary code via a long HOME environment variable.

  • CVE-2000-0476Jun 1, 2000
    risk 0.03cvss epss 0.03

    xterm, Eterm, and rxvt allow an attacker to cause a denial of service by embedding certain escape characters which force the window to be resized.

  • CVE-2008-1692Apr 7, 2008
    risk 0.00cvss epss 0.00

    Eterm 0.9.4 opens a terminal window on :0 if -display is not specified and the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections. NOTE: realistic attack scenarios require that the victim enters a command on the wrong machine.

  • CVE-2008-1142Apr 7, 2008
    risk 0.00cvss epss 0.00

    rxvt 2.6.4 opens a terminal window on :0 if the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections. NOTE: it was later reported that rxvt-unicode, mrxvt, aterm, multi-aterm, and wterm are also affected. NOTE: realistic attack…

  • CVE-2003-0382Jul 2, 2003
    risk 0.00cvss epss 0.00

    Buffer overflow in Eterm 0.9.2 allows local users to gain privileges via a long ETERMPATH environment variable.

  • CVE-2003-0068Mar 3, 2003
    risk 0.00cvss epss 0.02

    The Eterm terminal emulator 0.9.1 and earlier allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could…

  • CVE-2003-0021Mar 3, 2003
    risk 0.00cvss epss 0.01

    The "screen dump" feature in Eterm 0.9.1 and earlier allows attackers to overwrite arbitrary files via a certain character escape sequence when it is echoed to a user's terminal, e.g. when the user views a file containing the malicious sequence.

  • CVE-2000-0367Feb 18, 1999
    risk 0.00cvss epss 0.00

    Vulnerability in eterm 0.8.8 in Debian GNU/Linux allows an attacker to gain root privileges.