Marc Lehmann: >> Rxvt-Unicode Security Vulnerabilities
rxvt-unicode before 9.20 does not properly handle OSC escape sequences, which allows user-assisted remote attackers to manipulate arbitrary X window properties and execute arbitrary commands.
CVSS Score
7.6
EPSS Score
0.042
Published
2014-05-14
Buffer overflow in command.C for rxvt-unicode before 5.3 allows remote attackers to execute arbitrary code via a crafted file containing long escape sequences.
CVSS Score
7.5
EPSS Score
0.033
Published
2005-05-02
RXVT-Unicode 3.4 and 3.5 does not properly close file descriptors, which allows local users to access the terminals of other users and possibly gain privileges.
CVSS Score
4.6
EPSS Score
0.001
Published
2004-12-31