QwikSec

Security Database

CVE

CWE

Training

CVE-2008-5987

Published: Jan 28, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

Untrusted search path vulnerability in the Python interface in Eye of GNOME (eog) 2.22.3, and possibly other versions, allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983).

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20090126 CVE request -- Python < 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)

mailing-list

x_refsource_MLIST

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=504352

x_refsource_CONFIRM

vdb-entry

x_refsource_BID

vendor-advisory

x_refsource_GENTOO

https://bugzilla.redhat.com/show_bug.cgi?id=481553

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.