SuSE 10 Security Update : xterm (ZYPP Patch Number 5898)

This script is Copyright (C) 2009-2012 Tenable Network Security, Inc.

Synopsis :

The remote SuSE 10 host is missing a security-related patch.

Description :

XTerm evaluated various ANSI Escape sequences so that command
execution was possible if an attacker could pipe raw data to an xterm.

(It is usually not recommended to display raw data on an xterm.)

See also :

Solution :

Apply ZYPP patch number 5898.

Risk factor :

High / CVSS Base Score : 9.3

Family: SuSE Local Security Checks

Nessus Plugin ID: 41604 ()

Bugtraq ID:

CVE ID: CVE-2008-2383

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now