7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.015 Low
EPSS
Percentile
87.0%
Updated rxvt-unicode package fixes security vulnerability: rxvt-unicode (aka urxvt) before 9.20 is vulnerable to a user-assisted arbitrary commands execution issue. This can be exploited by the unprocessed display of certain escape sequences in a crafted text file or program output. Arbitrary command sequences can be constructed using this, and unintentionally executed if used in conjunction with various other escape sequences (CVE-2014-3121).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 3 | noarch | rxvt-unicode | < 9.20-1 | rxvt-unicode-9.20-1.mga3 |
Mageia | 4 | noarch | rxvt-unicode | < 9.20-1 | rxvt-unicode-9.20-1.mga4 |