CVE-2008-5986 in Csoundinformazioni

Riassunto

di MITRE

Untrusted search path vulnerability in the (1) "VST plugin with Python scripting" and (2) "VST plugin for writing score generators in Python" in Csound 5.08.2, and possibly other versions, allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983).

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

27/01/2009

Divulgazione

28/01/2009

Moderazione

accettato

Voce

VDB-46125

CPE

pronto

CWE

CWE-119 (confermato)

CVSS

9.3 (VulDB)

EPSS

0.00365

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-5986
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-5986
CVE Details	https://www.cvedetails.com/cve/CVE-2008-5986/

◂ Precedente Visione D'ensemble Il prossimo ▸

Interested in the pricing of exploits?

See the underground prices here!