CVE-2010-2945

Description

The default configuration of SLiM before 1.3.2 places ./ (dot slash) at the beginning of the default_path option, which might allow local users to gain privileges via a Trojan horse program in the current working directory, related to slim.conf and cfg.cpp.

Affected packages (1)

• Debian/slimfrom 0, < 1.3.1-7

References (1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2010-2945