CVE-2008-1142

rxvt 2.6.4 opens a terminal window on :0 if the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections.  NOTE: it was later reported that rxvt-unicode, mrxvt, aterm, multi-aterm, and wterm are also affected.  NOTE: realistic attack scenarios require that the victim enters a command on the wrong machine.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
3.7 UNKNOWN
LOCAL
HIGH
AV:L/AC:H/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 20%
VendorProductVersion
atermaterm
𝑥
≤ 1.0.0
atermaterm
0.1.0
atermaterm
0.1.1
atermaterm
0.2.0
atermaterm
0.3.0
atermaterm
0.3.1
atermaterm
0.3.2
atermaterm
0.3.3
atermaterm
0.3.4
atermaterm
0.3.5
atermaterm
0.3.6
atermaterm
0.4.0
atermaterm
0.4.1
atermaterm
0.4.2
atermaterm
1.00:beta1
atermaterm
1.00:beta2
atermaterm
1.00:beta3
atermaterm
1.00:beta4
etermeterm
𝑥
≤ 0.9.3
etermeterm
0.9.2
mrxvtmrxvt
𝑥
≤ 0.5.2
mrxvtmrxvt
0.4.2
multi-atermmulti-aterm
𝑥
≤ 0.2
multi-atermmulti-aterm
0.0.1
multi-atermmulti-aterm
0.0.3
multi-atermmulti-aterm
0.0.4
multi-atermmulti-aterm
0.0.5
multi-atermmulti-aterm
0.1
rxvtrxvt
𝑥
≤ 2.7.9
rxvtrxvt
2.6.1
rxvtrxvt
2.6.2
rxvtrxvt
2.6.3
rxvtrxvt
2.6.4
rxvtrxvt
2.7.5
rxvtrxvt
2.7.6
rxvtrxvt
2.7.7
rxvtrxvt
2.7.8
rxvt-unicoderxvt-unicode
𝑥
≤ 9.01
rxvt-unicoderxvt-unicode
1.0
rxvt-unicoderxvt-unicode
1.1
rxvt-unicoderxvt-unicode
1.2
rxvt-unicoderxvt-unicode
1.3
rxvt-unicoderxvt-unicode
1.4
rxvt-unicoderxvt-unicode
1.5
rxvt-unicoderxvt-unicode
1.6
rxvt-unicoderxvt-unicode
1.7
rxvt-unicoderxvt-unicode
1.8
rxvt-unicoderxvt-unicode
1.9
rxvt-unicoderxvt-unicode
1.91
rxvt-unicoderxvt-unicode
2.0
rxvt-unicoderxvt-unicode
2.1
rxvt-unicoderxvt-unicode
2.2
rxvt-unicoderxvt-unicode
2.3
rxvt-unicoderxvt-unicode
2.4
rxvt-unicoderxvt-unicode
2.5
rxvt-unicoderxvt-unicode
2.6
rxvt-unicoderxvt-unicode
2.7
rxvt-unicoderxvt-unicode
2.8
rxvt-unicoderxvt-unicode
2.9
rxvt-unicoderxvt-unicode
3.0
rxvt-unicoderxvt-unicode
3.1
rxvt-unicoderxvt-unicode
3.2
rxvt-unicoderxvt-unicode
3.3
rxvt-unicoderxvt-unicode
3.4
rxvt-unicoderxvt-unicode
3.5
rxvt-unicoderxvt-unicode
3.6
rxvt-unicoderxvt-unicode
3.7
rxvt-unicoderxvt-unicode
3.8
rxvt-unicoderxvt-unicode
3.9
rxvt-unicoderxvt-unicode
4.0
rxvt-unicoderxvt-unicode
4.1
rxvt-unicoderxvt-unicode
4.2
rxvt-unicoderxvt-unicode
4.3
rxvt-unicoderxvt-unicode
4.4
rxvt-unicoderxvt-unicode
4.5
rxvt-unicoderxvt-unicode
4.6
rxvt-unicoderxvt-unicode
4.7
rxvt-unicoderxvt-unicode
4.8
rxvt-unicoderxvt-unicode
4.9
rxvt-unicoderxvt-unicode
5.0
rxvt-unicoderxvt-unicode
5.1
rxvt-unicoderxvt-unicode
5.2
rxvt-unicoderxvt-unicode
5.3
rxvt-unicoderxvt-unicode
5.4
rxvt-unicoderxvt-unicode
5.5
rxvt-unicoderxvt-unicode
5.6
rxvt-unicoderxvt-unicode
5.7
rxvt-unicoderxvt-unicode
5.8
rxvt-unicoderxvt-unicode
5.9
rxvt-unicoderxvt-unicode
6.0
rxvt-unicoderxvt-unicode
6.1
rxvt-unicoderxvt-unicode
6.2
rxvt-unicoderxvt-unicode
6.3
rxvt-unicoderxvt-unicode
7.0
rxvt-unicoderxvt-unicode
7.1
rxvt-unicoderxvt-unicode
7.2
rxvt-unicoderxvt-unicode
7.3
rxvt-unicoderxvt-unicode
7.4
rxvt-unicoderxvt-unicode
7.5
rxvt-unicoderxvt-unicode
7.6
rxvt-unicoderxvt-unicode
7.7
rxvt-unicoderxvt-unicode
7.8
rxvt-unicoderxvt-unicode
7.9
rxvt-unicoderxvt-unicode
8.0
rxvt-unicoderxvt-unicode
8.1
rxvt-unicoderxvt-unicode
8.2
rxvt-unicoderxvt-unicode
8.3
rxvt-unicoderxvt-unicode
8.4
rxvt-unicoderxvt-unicode
8.5
rxvt-unicoderxvt-unicode
8.5a:a
rxvt-unicoderxvt-unicode
8.6
rxvt-unicoderxvt-unicode
8.7
rxvt-unicoderxvt-unicode
8.8
rxvt-unicoderxvt-unicode
8.9
rxvt-unicoderxvt-unicode
9.0
wtermwterm
𝑥
≤ 6.2.8a2
wtermwterm
6.2.5
wtermwterm
6.2.6
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
rxvt
oneiric
not-affected
natty
not-affected
maverick
not-affected
lucid
not-affected
karmic
not-affected
jaunty
not-affected
intrepid
not-affected
hardy
ignored
gutsy
ignored
feisty
ignored
edgy
ignored
dapper
ignored
Common Weakness Enumeration
References
http://article.gmane.org/gmane.comp.security.oss.general/122
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=469296
http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html
http://secunia.com/advisories/29576
http://secunia.com/advisories/30224
http://secunia.com/advisories/30225
http://secunia.com/advisories/30226
http://secunia.com/advisories/30227
http://secunia.com/advisories/30229
http://secunia.com/advisories/31687
http://security.gentoo.org/glsa/glsa-200805-03.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2008:161
http://www.mandriva.com/security/advisories?name=MDVSA-2008:221
http://www.securityfocus.com/bid/28512
http://article.gmane.org/gmane.comp.security.oss.general/122
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=469296
http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html
http://secunia.com/advisories/29576
http://secunia.com/advisories/30224
http://secunia.com/advisories/30225
http://secunia.com/advisories/30226
http://secunia.com/advisories/30227
http://secunia.com/advisories/30229
http://secunia.com/advisories/31687
http://security.gentoo.org/glsa/glsa-200805-03.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2008:161
http://www.mandriva.com/security/advisories?name=MDVSA-2008:221
http://www.securityfocus.com/bid/28512