Re: Eterm & others allow arbitrary commands execution via escape sequencies [Was: CAN-2003-0020?]

On Mon, Apr 19, 2004 at 11:18:51PM +0200, Jan Minar wrote:

It's not about Eterm, or the console.c in Linux, or the tty permissions,
it's about the bigger picture.


The bigger picture is that there are security problems and there are
security problems. The only specific problem you pointed out is just not

a big deal.

Mike Stone

Reply to:

References:
- Re: CAN-2003-0020?
  - From: Matt Zimmerman <mdz@debian.org>
- Re: CAN-2003-0020?
  - From: Jan Lühr <jluehr@gmx.net>
- Re: CAN-2003-0020?
  - From: Matt Zimmerman <mdz@debian.org>
- Eterm & others allow arbitrary commands execution via escape sequencies [Was: CAN-2003-0020?]
  - From: Jan Minar <jjminar@fastmail.fm>
- Re: Eterm & others allow arbitrary commands execution via escape sequencies [Was: CAN-2003-0020?]
  - From: Matt Zimmerman <mdz@debian.org>
- Re: Eterm & others allow arbitrary commands execution via escape sequencies [Was: CAN-2003-0020?]
  - From: Jan Minar <jjminar@fastmail.fm>
- Re: Eterm & others allow arbitrary commands execution via escape sequencies [Was: CAN-2003-0020?]
  - From: Matt Zimmerman <mdz@debian.org>
- Re: Eterm & others allow arbitrary commands execution via escape sequencies [Was: CAN-2003-0020?]
  - From: Jan Minar <jjminar@fastmail.fm>
- Re: Eterm & others allow arbitrary commands execution via escape sequencies [Was: CAN-2003-0020?]
  - From: Matt Zimmerman <mdz@debian.org>
- Re: Eterm & others allow arbitrary commands execution via escape sequencies [Was: CAN-2003-0020?]
  - From: Jan Minar <jjminar@fastmail.fm>