CVE-2008-5986 in Csoundالمعلومات

الملخص

بحسب MITRE

Untrusted search path vulnerability in the (1) "VST plugin with Python scripting" and (2) "VST plugin for writing score generators in Python" in Csound 5.08.2, and possibly other versions, allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983).

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

حجز

27/01/2009

إفشاء

28/01/2009

الاعتدال

تمت الموافقة

إدخال

VDB-46125

CPE

جاهز

CWE

CWE-119 (مؤكد)

CVSS

9.3 (VulDB)

EPSS

0.00365

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-5986
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-5986
CVE Details	https://www.cvedetails.com/cve/CVE-2008-5986/

التالي ▸نظرة عامة ◂ السابق

Do you want to use VulDB in your project?

Use the official API to access entries easily!