CVE-2003-0022

Name of the Vulnerable Software and Affected Versions rxvt version 2.7.8

Description The issue concerns the "screen dump" feature in rxvt, which allows attackers to overwrite arbitrary files via a certain character escape sequence when it is echoed to a user's terminal. This can occur, for example, when a user views a file containing the malicious sequence. Multiple vulnerabilities in the rxvt package may lead to breaches of confidentiality, integrity, and availability of protected information, and these vulnerabilities can be exploited remotely.

Recommendations For rxvt version 2.7.8, consider disabling the "screen dump" feature as a temporary workaround until a patch is available. Restrict access to sensitive files and terminals to minimize the risk of exploitation. Avoid using the terminal to view untrusted files that may contain malicious character escape sequences until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.