ServicesSecurity Alerts

EnderUNIX Hafiye Remote Terminal Escape Sequence Filtering Weakness (new!)

2004-09-09 14:47:28 Marketing Dept



Vulnerability Name： EnderUNIX Hafiye Remote Terminal Escape Sequence Filtering Weakness Published Date： 2004-08-23 Updated Date： 2004-08-23 CVE Number： CVE-MAP-NOMATCH Bugtraq ID：11014 Vulnerable： Enderunix Hafiye 1.0 Not Vulnerable： Description： EnderUNIX Hafiye is affected by a remote terminal escape sequence weakness. This issue is caused by a failure of the application to properly sanitize user-supplied input. An attacker might leverage this issue to inject terminal escape sequences into data that will be displayed on in a terminal window; if the terminal is vulnerable to escape sequence issues code execution is possible. Vender Status： No Patch. Solution： Currently we are not aware of any vendor-supplied patches for this issue.

Editor： Marketing Dept

【Large Medium Small】【close】

■ LINK:

®2004 Information Security One (China) Ltd. All right reserved | Privacy Policy | Legal Notice