3 matches found
Design/Logic Flaw
Untrusted search path vulnerability in the Python plugin in Dia 0.96.1, and possibly other versions, allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySysSetArgv function CVE-2008-5983...
CVE-2008-5984
Untrusted search path vulnerability in the Python plugin in Dia 0.96.1, and possibly other versions, allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySysSetArgv function CVE-2008-5983...
CVE-2008-5984
CVE-2008-5984 describes an untrusted search path vulnerability in the Python plugin used by Dia 0.96.1, enabling local users to run arbitrary code via a Trojan Python file in the current working directory. The underlying root cause is tied to PySys_SetArgv (CVE-2008-5983), which can prepend an em...