Red Hat Local Security Checks : RedHat Security Advisory RHSA-2003:055

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.50987

Categoría: Red Hat Local Security Checks

Título: RedHat Security Advisory RHSA-2003:055

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing updates announced in
advisory RHSA-2003:055.

Rxvt is a color VT102 terminal emulator for the X Window System. A number
of issues have been found in the escape sequence handling of Rxvt.
These could be potentially exploited if an attacker can cause carefully
crafted escape sequences to be displayed on an rxvt terminal being used by
their victim.

One of the features which most terminal emulators support is the ability
for the shell to set the title of the window using an escape sequence.
Certain xterm variants, including rxvt, also provide an escape sequence for
reporting the current window title. This essentially takes the current
title and places it directly on the command line. Since it is not
possible to embed a carriage return into the window title itself, the
attacker would have to convince the victim to press the Enter key for the
title to be processed as a command, although the attacker can perform a
number of actions to increase the likelihood of this happening.

A certain escape sequence when displayed in rxvt will create an arbitrary
file.

It is possible to add malicious items to the dynamic menus through an
escape sequence.

Users of Rxvt are advised to upgrade to these errata packages which contain
a patch to disable the title reporting functionality and patches to correct
the other issues.

Red Hat would like to thank H D Moore for bringing these issues to our
attention.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2003-055.html

Risk factor : Medium

CVSS Score:
5.0

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2003-0022
BugTraq ID: 6938
http://www.securityfocus.com/bid/6938
Bugtraq: 20030224 Terminal Emulator Security Issues (Google Search)
http://marc.info/?l=bugtraq&m=104612710031920&w=2
http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:034
http://www.redhat.com/support/errata/RHSA-2003-054.html
http://www.redhat.com/support/errata/RHSA-2003-055.html
http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0093.html
http://www.iss.net/security_center/static/11413.php
Common Vulnerability Exposure (CVE) ID: CVE-2003-0023
BugTraq ID: 6947
http://www.securityfocus.com/bid/6947
http://www.iss.net/security_center/static/11416.php
Common Vulnerability Exposure (CVE) ID: CVE-2003-0006

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.50987
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2003:055
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2003:055. Rxvt is a color VT102 terminal emulator for the X Window System. A number of issues have been found in the escape sequence handling of Rxvt. These could be potentially exploited if an attacker can cause carefully crafted escape sequences to be displayed on an rxvt terminal being used by their victim. One of the features which most terminal emulators support is the ability for the shell to set the title of the window using an escape sequence. Certain xterm variants, including rxvt, also provide an escape sequence for reporting the current window title. This essentially takes the current title and places it directly on the command line. Since it is not possible to embed a carriage return into the window title itself, the attacker would have to convince the victim to press the Enter key for the title to be processed as a command, although the attacker can perform a number of actions to increase the likelihood of this happening. A certain escape sequence when displayed in rxvt will create an arbitrary file. It is possible to add malicious items to the dynamic menus through an escape sequence. Users of Rxvt are advised to upgrade to these errata packages which contain a patch to disable the title reporting functionality and patches to correct the other issues. Red Hat would like to thank H D Moore for bringing these issues to our attention. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2003-055.html Risk factor : Medium CVSS Score: 5.0
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2003-0022 BugTraq ID: 6938 http://www.securityfocus.com/bid/6938 Bugtraq: 20030224 Terminal Emulator Security Issues (Google Search) http://marc.info/?l=bugtraq&m=104612710031920&w=2 http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:034 http://www.redhat.com/support/errata/RHSA-2003-054.html http://www.redhat.com/support/errata/RHSA-2003-055.html http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0093.html http://www.iss.net/security_center/static/11413.php Common Vulnerability Exposure (CVE) ID: CVE-2003-0023 BugTraq ID: 6947 http://www.securityfocus.com/bid/6947 http://www.iss.net/security_center/static/11416.php Common Vulnerability Exposure (CVE) ID: CVE-2003-0006
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com