Title: RXVT-Unicode Open File Descriptor Leakage Vulnerability
Severity: LOW
Description:
RXVT-Unicode is a fork of the RXVT project. RXVT is X11-based terminal emulation software. It is available for platforms which support the X Windowing system, such as Unix and Linux variants. This fork brings Unicode character support to the package.
It is reported that RXVT-Unicode fails to properly close file descriptors when spawning new child terminal windows.
This vulnerability presents itself when new child processes are spawned for the purpose of creating a new terminal emulator window. File descriptors present in the parent process could be improperly passed to the child.
The child process could then potentially gain access to possibly sensitive information from the contents of the open file descriptors. Depending on the mode of the original file, and the privileges of the user that opened it, processes in the child window may exploit this vulnerability to take control of the parent process. Other attacks may also be possible.
An attacker requires local access to the RXVT-Unicode process window to exploit this vulnerability.
Versions prior to 3.6 are reported vulnerable to this issue.
Affected Products:
- Marc Lehmann RXVT-Unicode 3.4.0
- Marc Lehmann RXVT-Unicode 3.5.0
References:
- Marc Lehmann: RXVT-Unicode Home Page
- Marc Lehmann: RXVT-Unicode change log
- rxvt: rxvt homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
