Untrusted search path vulnerability in the GObject Python interpreter wrapper in Gnumeric allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983).
Name | Vendor | Start Version | End Version |
---|---|---|---|
Gnumeric | Gnome | * | * |
Gnumeric | Ubuntu | dapper | * |
Gnumeric | Ubuntu | gutsy | * |
Gnumeric | Ubuntu | hardy | * |
Gnumeric | Ubuntu | intrepid | * |
Gnumeric | Ubuntu | jaunty | * |
Gnumeric | Ubuntu | upstream | * |