Description
Apple Terminal 1.4.4 allows attackers to execute arbitrary commands via terminal escape sequences.
Affected products
- Apple / mac_os_x10.3.9 – 10.3.9
- Apple / mac_os_x10.3 – 10.3
- Apple / mac_os_x10.3.1 – 10.3.1
- Apple / mac_os_x10.3.2 – 10.3.2
- Apple / mac_os_x10.3.3 – 10.3.3
- Apple / mac_os_x10.3.4 – 10.3.4
- Apple / mac_os_x10.3.5 – 10.3.5
- Apple / mac_os_x10.3.6 – 10.3.6
- Apple / mac_os_x10.3.7 – 10.3.7
- Apple / mac_os_x10.3.8 – 10.3.8
- Apple / mac_os_x_server10.3.9 – 10.3.9
- Apple / mac_os_x_server10.3 – 10.3
- Apple / mac_os_x_server10.3.1 – 10.3.1
- Apple / mac_os_x_server10.3.2 – 10.3.2
- Apple / mac_os_x_server10.3.3 – 10.3.3
- Apple / mac_os_x_server10.3.4 – 10.3.4
- Apple / mac_os_x_server10.3.5 – 10.3.5
- Apple / mac_os_x_server10.3.6 – 10.3.6
- Apple / mac_os_x_server10.3.7 – 10.3.7
- Apple / mac_os_x_server10.3.8 – 10.3.8
- Apple / terminal1.4.4 – 1.4.4
References
- MISChttp://www.securityfocus.com/bid/13480
- VENDOR_ADVISORYhttp://secunia.com/advisories/15227
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2005/0455
- MISChttp://securitytracker.com/id?1013882
- MAILING_LISThttp://lists.apple.com/archives/security-announce/2005/May/msg00001.html
- MISChttp://www.kb.cert.org/vuls/id/994510
- MISChttp://www.osvdb.org/16083
- MISChttp://remahl.se/david/vuln/012/