ConEmu through 220807 and Cmder before 1.3.21 report the title of the terminal, including control characters, which allows an attacker to change the title and then execute it as commands.
The product prepares a structured message for communication with another component, but encoding or escaping of the data is either missing or done incorrectly. As a result, the intended structure of the message is not preserved.
Link | Tags |
---|---|
https://github.com/cmderdev/cmder/blob/master/CHANGELOG.md | release notes |
https://gist.github.com/dgl/05ca60cdc7efc9e47bbc58d0c952635e | third party advisory |