CVE-2001-1077

Name of the Vulnerable Software and Affected Versions rxvt version 2.6.2 rxvt-ml (affected versions not specified)

Description The issue concerns multiple vulnerabilities in the rxvt package of the Debian GNU/Linux operating system, which can be exploited by a local attacker to compromise the confidentiality, integrity, and availability of protected information. A buffer overflow vulnerability in the tt printf function of rxvt version 2.6.2 allows local users to gain privileges via a long argument, specifically the -T or -name options.

Recommendations For rxvt version 2.6.2, consider restricting access to the tt printf function until a patch is available. For rxvt-ml, at the moment, there is no information about a newer version that contains a fix for this vulnerability.