Lucene search
Joxean KoretEDB-ID:27728HistoryApr 24, 2006 - 12:00 a.m.
Blender 2.36 - '.BVF' File Import Python Code Execution
2006-04-2400:00:00
Joxean Koret
www.exploit-db.com
19
AI Score
7.4
Confidence
Low
source: https://www.securityfocus.com/bid/17663/info
Blender is susceptible to a Python code-execution vulnerability. This issue is due to the application's failure to properly sanitize user-supplied input before using it in a Python 'eval' statement.
This issue allows attackers to execute arbitrary Python code in the context of the user running the affected application.
http://bugs.debian.org/cgi-bin/bugreport.cgi/exploit.bvh?bug=330895;msg=5;att=1
http://bugs.debian.org/cgi-bin/bugreport.cgi/poc1.bvh?bug=330895;msg=5;att=3
http://bugs.debian.org/cgi-bin/bugreport.cgi/poc2.bvh?bug=330895;msg=5;att=4Related
cvelist
cvelist
CVE-2005-3302
2005-10-24 04:00:00
nvd
nvd
CVE-2005-3302
2005-10-24 10:02:00
debiancve
debiancve
CVE-2005-3302
2005-10-24 10:02:00
cve
cve
CVE-2005-3302
2005-10-24 10:02:00
ubuntucve
ubuntucve
CVE-2005-3302
2005-10-24 00:00:00
openvas
openvas
Debian Security Advisory DSA 1039-1 (blender)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-1039-1)
2008-01-17 00:00:00
debian
debian
[SECURITY] [DSA 1039-1] New blender packages fix several vulnerabilities
2006-04-24 06:29:55
[SECURITY] [DSA 1039-1] New blender packages fix several vulnerabilities
2006-04-24 06:29:55
nessus
nessus
Debian DSA-1039-1 : blender - several vulnerabilities
2006-10-14 00:00:00
osv
osv
blender - several
2006-04-24 00:00:00