Candidate: CVE-2006-7236
PublicDate: 2009-01-02 18:11:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-7236
 https://ubuntu.com/security/notices/USN-703-1
Description:
 The default configuration of xterm on Debian GNU/Linux sid and possibly
 Ubuntu enables the allowWindowOps resource, which allows user-assisted
 attackers to execute arbitrary code or have unspecified other impact via
 escape sequences.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to: kees
CVSS: 

Patches_xterm:
upstream_xterm: needs-triage
dapper_xterm: released (208-3.1ubuntu3.1)
gutsy_xterm: released (229-1ubuntu0.1)
hardy_xterm: released (229-1ubuntu1.1)
intrepid_xterm: released (235-1ubuntu1.1)
devel_xterm: not-affected (238-2ubuntu1)