Eterm Screen Dump Escape Sequence Local File Corruption Vulnerability

Eterm's screen dump feature may be abused to corrupt local files which are writeable by the terminal user. This may result in remote compromise or local privilege escalation.

It is possible to exploit this issue if an attacker can cause malicious escape sequences to be displayed in a terminal window of a vulnerable terminal emulator.


 

Privacy Statement
Copyright 2010, SecurityFocus