CVE-2003-0070

Current Description

VTE, as used by default in gnome-terminal terminal emulator 2.2 and as an option in gnome-terminal 2.0, allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary commands.

Evaluator Description

Per: http://cwe.mitre.org/data/definitions/77.html'CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection')'

Referenced by CVEs:CVE-2010-2713

Basic Data

PublishedMarch 03, 2003
Last ModifiedOctober 18, 2016
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeNVD-CWE-Other
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityMEDIUM
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactPARTIAL
CVSS 2 - Availability ImpactPARTIAL
CVSS 2 - Base Score6.8
SeverityMEDIUM
Exploitability Score8.6
Impact Score6.4
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegetrue

Base Metric V3

No data provided.

Configurations

  • AND
    • OR - Configuration 1
      Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
      2.3ApplicationNalin DahyabhaiVte0.11.21*******
      2.3ApplicationNalin DahyabhaiVte0.12.2*******
      2.3ApplicationNalin DahyabhaiVte0.14.2*******
      2.3ApplicationNalin DahyabhaiVte0.15.0*******
      2.3ApplicationNalin DahyabhaiVte0.16.14*******
      2.3ApplicationNalin DahyabhaiVte0.17.4*******
      2.3ApplicationNalin DahyabhaiVte0.20.5*******
      2.3ApplicationNalin DahyabhaiVte0.22.5*******
      2.3ApplicationNalin DahyabhaiVte0.24.3*******
      2.3ApplicationNalin DahyabhaiVte0.25.1*******
    • OR Running on/with:
      Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
      2.3ApplicationGnomeGnome-terminal2.0*******
      2.3ApplicationGnomeGnome-terminal2.2*******

Vulnerable Software List

VendorProductVersions
Nalin Dahyabhai Vte 0.11.21, 0.12.2, 0.14.2, 0.15.0, 0.16.14, 0.17.4, 0.20.5, 0.22.5, 0.24.3, 0.25.1
Gnome Gnome-terminal 2.0, 2.2

References

NameSourceURLTags
20030224 Terminal Emulator Security Issueshttp://archives.neohapsis.com/archives/vulnwatch/2003-q1/0093.htmlVULNWATCHVendor Advisory
20030224 Terminal Emulator Security Issueshttp://marc.info/?l=bugtraq&m=104612710031920&w=2BUGTRAQ
GLSA-200303-2http://seclists.org/lists/bugtraq/2003/Mar/0010.htmlGENTOO
terminal-emulator-window-title(11414)http://www.iss.net/security_center/static/11414.phpXFVendor Advisory
RHSA-2003:053http://www.redhat.com/support/errata/RHSA-2003-053.htmlREDHAT