FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

screen -- combined UTF-8 characters vulnerability

Affected packages
screen < 4.0.3

Details

VuXML ID b318dc8c-6756-11db-83c3-000c6ec775d9
Discovery 2006-10-23
Entry 2006-10-29

A vulnerability in the handling of combined UTF-8 characters in screen may allow an user-assisted attacker to crash screen or potentially allow code execution as the user running screen. To exploit this issue the user running scren must in some way interact with the attacker.

References

Bugtraq ID 20727
CVE Name CVE-2006-4573
Message http://lists.gnu.org/archive/html/screen-users/2006-10/msg00028.html
URL https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=212056

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.