Computer Security
[EN] securityvulns.ru no-pyccku


Emacs safe mode protection bypass
updated since 14.11.2007
Published:14.11.2007
Source:
SecurityVulns ID:8343
Type:local
Threat Level:
5/10
Description:It's possible to bypass enable-local-variables safe mode.
Affected:EMACS : emacs 22.1
CVE:CVE-2007-5795 (The hack-local-variables function in Emacs before 22.2, when enable-local-variables is set to :safe, does not properly search lists of unsafe or risky variables, which might allow user-assisted attackers to bypass intended restrictions and modify critical program variables via a file containing a Local variables declaration.)
Original documentdocumentUBUNTU, [USN-541-1] Emacs vulnerability (14.11.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod