CVE-2008-5984

描述

Untrusted search path vulnerability in the Python plugin in Dia 0.96.1, and possibly other versions, allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983).

受影響套件(1)

• Debian/diafrom 0, < 0.96.1-7.1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2008-5984