OpenBSD VuXML: Documenting security issues in the OpenBSD Ports & Packages Collection

mlterm -- integer overflow vulnerability

Affected packages
mlterm < 2.9.0p0

Details

VuXML ID 23ac1dfa-9273-11d9-ac88-080020fe8945
Discovery 2005-03-07
Entry 2005-03-11

mlterm is vulnerable to an integer overflow that can be triggered by specifying a large image file as a background. An attacker can create a specially-crafted image file which, when used as a background by the victim, can lead to the execution of arbitrary code with the privileges of the user running mlterm.

References

URL https://sourceforge.net/project/shownotes.php?release_id=310416

Copyright © 2003-2005 Jacques Vidrine, Robert Nagy, and contributors.
Please see the source of this document for full copyright information.