VYPR

Terminology

by Enlightenment

CVEs (2)

  • CVE-2015-8971HigJan 23, 2017
    risk 0.51cvss 7.8epss 0.01

    Terminology 0.7.0 allows remote attackers to execute arbitrary commands via escape sequences that modify the window title and then are written to the terminal, a similar issue to CVE-2003-0063.

  • CVE-2018-20167Dec 17, 2018
    risk 0.00cvss epss 0.03

    Terminology before 1.3.1 allows Remote Code Execution because popmedia is mishandled, as demonstrated by an unsafe "cat README.md" command when \e}pn is used. A popmedia control sequence can allow the malicious execution of executable file formats registered in the X desktop…