Vulnerabilities > CVE-2006-7236 - Configuration vulnerability in Invisible-Island Xterm NIL
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
The default configuration of xterm on Debian GNU/Linux sid and possibly Ubuntu enables the allowWindowOps resource, which allows user-assisted attackers to execute arbitrary code or have unspecified other impact via escape sequences.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 | |
| OS | 1 | |
| OS | 1 |
Common Weakness Enumeration (CWE)
Exploit-Db
| description | xterm DECRQSS Remote Command Execution Vulnerability. CVE-2006-7236 . Remote exploit for linux platform |
| id | EDB-ID:32690 |
| last seen | 2016-02-03 |
| modified | 2008-12-29 |
| published | 2008-12-29 |
| reporter | Paul Szabo |
| source | https://www.exploit-db.com/download/32690/ |
| title | xterm DECRQSS Remote Command Execution Vulnerability |
Nessus
| NASL family | Ubuntu Local Security Checks |
| NASL id | UBUNTU_USN-703-1.NASL |
| description | Paul Szabo discovered that the DECRQSS escape sequences were not handled correctly by xterm. Additionally, window title operations were also not safely handled. If a user were tricked into viewing a specially crafted series of characters while in xterm, a remote attacker could execute arbitrary commands with user privileges. (CVE-2006-7236, CVE-2008-2382). Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 37162 |
| published | 2009-04-23 |
| reporter | Ubuntu Security Notice (C) 2009-2019 Canonical, Inc. / NASL script (C) 2009-2018 and is owned by Tenable, Inc. or an Affiliate thereof. |
| source | https://www.tenable.com/plugins/nessus/37162 |
| title | Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : xterm vulnerabilities (USN-703-1) |
Statements
| contributor | Tomas Hoger |
| lastmodified | 2009-01-21 |
| organization | Red Hat |
| statement | Not vulnerable. This issue did not affect the versions of the xterm package, as shipped with Red Hat Enterprise Linux 3, 4, and 5, and the version of the XFree86 (providing xterm) and hanterm-xf packages, as shipped with Red Hat Enterprise Linux 2.1. |