CVE-2007-3770

N/A Unknown

Published: July 15, 2007 Modified: April 23, 2026

Description

The terminal_helper_execute function in terminal/terminal.c in Xfce Terminal 0.2.6 allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a crafted link, as demonstrated using the "Open Link" functionality.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://bugs.gentoo.org/show_bug.cgi?id=184886

Source: cve@mitre.org

http://osvdb.org/38082

Source: cve@mitre.org

http://secunia.com/advisories/26037

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/26392

Source: cve@mitre.org

http://secunia.com/advisories/26418

Source: cve@mitre.org

http://secunia.com/advisories/27374

Source: cve@mitre.org

http://security.gentoo.org/glsa/glsa-200708-07.xml

Source: cve@mitre.org

http://www.debian.org/security/2007/dsa-1393

Source: cve@mitre.org

http://www.securityfocus.com/bid/24889

Source: cve@mitre.org

http://www.ubuntu.com/usn/usn-497-1

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/35379

Source: cve@mitre.org

http://bugs.gentoo.org/show_bug.cgi?id=184886