Computer Security

CVE-2007-5795
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



CVECVE-2007-5795
StatusCandidate
DescriptionThe hack-local-variables function in Emacs before 22.2, when enable-local-variables is set to :safe, does not properly search lists of unsafe or risky variables, which might allow user-assisted attackers to bypass intended restrictions and modify critical program variables via a file containing a Local variables declaration.
PhaseAssigned (02.11.2007)
NVD:http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-5795
ReferencesBID : 26327
 CONFIRM : http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=4...
 XF : emacs-hacklocalvariables-security-bypass(38263)
SecurityVulns:Emacs safe mode protection bypass
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server