Command Execution Vulnerability in Apple Terminal by Apple
CVE-2005-1342

Currently unrated

Key Information:

Vendor: Apple
Status: Terminal
Vendor: CVE Published:; 4 May 2005

Summary

The URI handler for Apple Terminal version 1.4.4 on Mac OS X 10.3.9 does not properly validate terminal escape sequences. This oversight allows remote attackers to potentially execute arbitrary commands on the vulnerable system by crafting malicious URIs. Exploitation of this vulnerability could compromise the security of the affected systems, highlighting the importance of applying the necessary security patches and updates to mitigate such risks.

References

http://remahl.se/david/vuln/011/

x_refsource_MISC

http://www.securityfocus.com/bid/13480

vdb-entryx_refsource_BID

http://www.us-cert.gov/cas/techalerts/TA05-136A.html

third-party-advisoryx_refsource_CERT

EPSS Score

22% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 4, 2005
Vulnerability Reserved
Apr 27, 2005