CVE-2014-3121

Name of the Vulnerable Software and Affected Versions rxvt-unicode versions prior to 9.20

Description The issue allows user-assisted remote attackers to manipulate arbitrary X window properties and execute arbitrary commands due to improper handling of OSC escape sequences. Exploitation can lead to a breach of confidentiality, integrity, and availability of protected information and can be carried out remotely.

Recommendations For versions prior to 9.20, update to version 9.20 or later to resolve the issue. As a temporary workaround, consider disabling the handling of OSC escape sequences until a patch is available. Restrict access to potentially vulnerable X window properties to minimize the risk of exploitation. Avoid using crafted text files or program outputs that may contain unprocessed escape sequences until the issue is resolved.