Rhythmbox vulnerability

ID USN-1503-1
Type ubuntu
Reporter Ubuntu
Modified 2012-07-11T00:00:00


Hans Spaans discovered that the Context plugin in Rhythmbox created a
temporary directory in an insecure manner. A local attacker could exploit
this to execute arbitrary code as the user invoking the program. The
Context plugin is disabled by default in Ubuntu.