2 matches found
CVE-2008-5987
The CVE-2008-5987 entry concerns Eye of GNOME (eog) up to at least version 2.22.3, with a vulnerability in the Python interface. The issue arises from an untrusted search path: a Trojan horse Python file in the current working directory can be executed, due to the PySys_SetArgv function. This loc...
CVE-2003-0165
Eye of GNOME (EOG) 2.2.0 and earlier is affected by a format-string vulnerability in the command-line filename handling, allowing an attacker to execute arbitrary code with the user’s privileges. Exploitation would require a crafted filename passed to EOG (e.g., via mailcap/mail clients). Patches...