RXVT Screen Dump Escape Sequence Local File Corruption Vulnerability

info
discussion
exploit
solution
references

RXVT Screen Dump Escape Sequence Local File Corruption Vulnerability

rxvt's screen dump feature may be abused to corrupt local files which are writeable by the terminal user. This may result in remote compromise or local privilege escalation.

It is possible to exploit this issue if an attacker can cause malicious escape sequences to be displayed in a terminal window of a vulnerable terminal emulator.