Apple: >> Terminal Security Vulnerabilities
The default configuration of Terminal in Apple Mac OS X 10.6 before 10.6.7 uses SSH protocol version 1 within the New Remote Connection dialog, which might make it easier for man-in-the-middle attackers to spoof SSH servers by leveraging protocol vulnerabilities.
CVSS Score
5.0
EPSS Score
0.002
Published
2011-03-23
Apple Terminal 1.4.4 allows attackers to execute arbitrary commands via terminal escape sequences.
CVSS Score
5.1
EPSS Score
0.008
Published
2005-05-04
The x-man-page: URI handler for Apple Terminal 1.4.4 in Mac OS X 10.3.9 does not cleanse terminal escape sequences, which allows remote attackers to execute arbitrary commands.
CVSS Score
7.5
EPSS Score
0.223
Published
2005-05-04
Terminal 1.3 in Apple Mac OS X 10.2 allows remote attackers to execute arbitrary commands via shell metacharacters in a telnet:// link, which is executed by Terminal.app window.
CVSS Score
7.2
EPSS Score
0.032
Published
2002-12-31