CVE-2008-5986 in Csoundinfo

Zusammenfassung

von MITRE

Untrusted search path vulnerability in the (1) "VST plugin with Python scripting" and (2) "VST plugin for writing score generators in Python" in Csound 5.08.2, and possibly other versions, allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983).

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

27.01.2009

Veröffentlichung

28.01.2009

Moderieren

akzeptiert

Eintrag

VDB-46125

CPE

bereit

CWE

CWE-119 (bestätigt)

CVSS

9.3 (VulDB)

EPSS

0.00365

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-5986
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-5986
CVE Details	https://www.cvedetails.com/cve/CVE-2008-5986/

◂ Zurück Übersicht Weiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!