Michael Jennings
Products
1- 8 CVEs
Recent CVEs
8| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2002-0143 | 0.03 | — | 0.01 | Mar 25, 2002 | Buffer overflow in Eterm of Enlightenment Imlib2 1.0.4 and earlier allows local users to execute arbitrary code via a long HOME environment variable. | |||
| CVE-2000-0476 | 0.03 | — | 0.03 | Jun 1, 2000 | xterm, Eterm, and rxvt allow an attacker to cause a denial of service by embedding certain escape characters which force the window to be resized. | |||
| CVE-2008-1692 | 0.00 | — | 0.00 | Apr 7, 2008 | Eterm 0.9.4 opens a terminal window on :0 if -display is not specified and the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections. NOTE: realistic attack scenarios require that the victim enters a command on the wrong machine. | |||
| CVE-2008-1142 | 0.00 | — | 0.00 | Apr 7, 2008 | rxvt 2.6.4 opens a terminal window on :0 if the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections. NOTE: it was later reported that rxvt-unicode, mrxvt, aterm, multi-aterm, and wterm are also affected. NOTE: realistic attack… | |||
| CVE-2003-0382 | 0.00 | — | 0.00 | Jul 2, 2003 | Buffer overflow in Eterm 0.9.2 allows local users to gain privileges via a long ETERMPATH environment variable. | |||
| CVE-2003-0068 | 0.00 | — | 0.02 | Mar 3, 2003 | The Eterm terminal emulator 0.9.1 and earlier allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could… | |||
| CVE-2003-0021 | 0.00 | — | 0.01 | Mar 3, 2003 | The "screen dump" feature in Eterm 0.9.1 and earlier allows attackers to overwrite arbitrary files via a certain character escape sequence when it is echoed to a user's terminal, e.g. when the user views a file containing the malicious sequence. | |||
| CVE-2000-0367 | 0.00 | — | 0.00 | Feb 18, 1999 | Vulnerability in eterm 0.8.8 in Debian GNU/Linux allows an attacker to gain root privileges. |
- CVE-2002-0143Mar 25, 2002risk 0.03cvss —epss 0.01
Buffer overflow in Eterm of Enlightenment Imlib2 1.0.4 and earlier allows local users to execute arbitrary code via a long HOME environment variable.
- CVE-2000-0476Jun 1, 2000risk 0.03cvss —epss 0.03
xterm, Eterm, and rxvt allow an attacker to cause a denial of service by embedding certain escape characters which force the window to be resized.
- CVE-2008-1692Apr 7, 2008risk 0.00cvss —epss 0.00
Eterm 0.9.4 opens a terminal window on :0 if -display is not specified and the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections. NOTE: realistic attack scenarios require that the victim enters a command on the wrong machine.
- CVE-2008-1142Apr 7, 2008risk 0.00cvss —epss 0.00
rxvt 2.6.4 opens a terminal window on :0 if the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections. NOTE: it was later reported that rxvt-unicode, mrxvt, aterm, multi-aterm, and wterm are also affected. NOTE: realistic attack…
- CVE-2003-0382Jul 2, 2003risk 0.00cvss —epss 0.00
Buffer overflow in Eterm 0.9.2 allows local users to gain privileges via a long ETERMPATH environment variable.
- CVE-2003-0068Mar 3, 2003risk 0.00cvss —epss 0.02
The Eterm terminal emulator 0.9.1 and earlier allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could…
- CVE-2003-0021Mar 3, 2003risk 0.00cvss —epss 0.01
The "screen dump" feature in Eterm 0.9.1 and earlier allows attackers to overwrite arbitrary files via a certain character escape sequence when it is echoed to a user's terminal, e.g. when the user views a file containing the malicious sequence.
- CVE-2000-0367Feb 18, 1999risk 0.00cvss —epss 0.00
Vulnerability in eterm 0.8.8 in Debian GNU/Linux allows an attacker to gain root privileges.