The Third Party Vulnerability Resolution Blog covers CVEs and patches in Systems product suite.

Sun Alert 254208 A Security Vulnerability in the xterm(1) program Delivered With OpenSolaris Involving the Parsing of Device Control Request Status String (DECRQSS) Sequences May Lead to Execution of Arbitrary Code

Guest Author
Product: OpenSolaris

A security vulnerability in the xterm(1) program delivered with OpenSolaris related to the interpretation of certain Device Control Request Status String (DECRQSS) sequences may allow unprivileged local or remote users to execute arbitrary code with the privileges of the user running xterm(1).

This issue is described in the following document:

State: Resolved
First released: 05-Mar-2009

Be the first to comment

Comments ( 0 )
Please enter your name.Please provide a valid email address.Please enter a comment.CAPTCHA challenge response provided was incorrect. Please try again.