CVE-2014-3121
Published May 14, 2014
Last updated 7 years ago
Overview
- Description
- rxvt-unicode before 9.20 does not properly handle OSC escape sequences, which allows user-assisted remote attackers to manipulate arbitrary X window properties and execute arbitrary commands.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.6
- Impact score
- 10
- Exploitability score
- 4.9
- Vector string
- AV:N/AC:H/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-78
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:marc_lehmann:rxvt-unicode:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "25DB5E1F-A88C-46F2-89EB-A90DFAFEBFB7",
"versionEndIncluding": "9.19"
},
{
"criteria": "cpe:2.3:a:marc_lehmann:rxvt-unicode:9.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E3E73A3E-A004-4CA3-847C-753E43804C23"
},
{
"criteria": "cpe:2.3:a:marc_lehmann:rxvt-unicode:9.01:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C3874AF4-8A9F-4A0E-A067-CABECE68F7A6"
},
{
"criteria": "cpe:2.3:a:marc_lehmann:rxvt-unicode:9.02:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E1A30670-22A6-4210-83C6-619F5A91DBDE"
},
{
"criteria": "cpe:2.3:a:marc_lehmann:rxvt-unicode:9.05:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BCEDD254-4C52-4A2F-9A1D-5672CDAF4420"
},
{
"criteria": "cpe:2.3:a:marc_lehmann:rxvt-unicode:9.06:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B45DE401-2176-41F7-A56E-CA398245ADF1"
},
{
"criteria": "cpe:2.3:a:marc_lehmann:rxvt-unicode:9.07:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D982FF42-92BA-4AA5-BD02-3BC62A0BBAAB"
},
{
"criteria": "cpe:2.3:a:marc_lehmann:rxvt-unicode:9.08:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "29E1418D-0D83-4A54-A6F6-F4A6703AA0E1"
},
{
"criteria": "cpe:2.3:a:marc_lehmann:rxvt-unicode:9.09:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7D8074ED-468B-46C7-B342-6D58FE6BCE75"
},
{
"criteria": "cpe:2.3:a:marc_lehmann:rxvt-unicode:9.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CDDC49F8-470B-4389-94D8-7BBDE38F0DFD"
},
{
"criteria": "cpe:2.3:a:marc_lehmann:rxvt-unicode:9.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A670AF7E-8D85-4C67-BE77-26B837B05FDA"
},
{
"criteria": "cpe:2.3:a:marc_lehmann:rxvt-unicode:9.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CDD5D4E0-5A13-4F38-8AFB-5403E24DDCED"
},
{
"criteria": "cpe:2.3:a:marc_lehmann:rxvt-unicode:9.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CF1568DB-B725-4F66-9DC2-3833C54F4D24"
},
{
"criteria": "cpe:2.3:a:marc_lehmann:rxvt-unicode:9.15:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EDC56E18-80EF-4FC7-85A6-E5A1AC12513E"
},
{
"criteria": "cpe:2.3:a:marc_lehmann:rxvt-unicode:9.16:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CB5D1CD3-3FED-4DCC-A3AE-6DFA947803A8"
},
{
"criteria": "cpe:2.3:a:marc_lehmann:rxvt-unicode:9.17:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6C804D78-A4BB-4188-AED7-C11AA1F2611F"
},
{
"criteria": "cpe:2.3:a:marc_lehmann:rxvt-unicode:9.18:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FB7537CB-AF13-4816-A6AF-C9C84A84B285"
}
],
"operator": "OR"
}
]
}
]