Untrusted search path vulnerability in csi in Chicken before 4.8.2 allows local users to execute arbitrary code via a Trojan horse .csirc in the current working directory.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Chicken | Call-cc | * | 4.8.1 (including) |
Chicken | Call-cc | 4.8.0 (including) | 4.8.0 (including) |
Chicken | Call-cc | 4.8.0-rc1 (including) | 4.8.0-rc1 (including) |
Chicken | Call-cc | 4.8.0-rc2 (including) | 4.8.0-rc2 (including) |
Chicken | Call-cc | 4.8.0-rc3 (including) | 4.8.0-rc3 (including) |
Chicken | Call-cc | 4.8.0-rc4 (including) | 4.8.0-rc4 (including) |
Chicken | Call-cc | 4.8.0.1 (including) | 4.8.0.1 (including) |
Chicken | Call-cc | 4.8.0.2 (including) | 4.8.0.2 (including) |
Chicken | Call-cc | 4.8.0.3 (including) | 4.8.0.3 (including) |
Chicken | Call-cc | 4.8.0.4 (including) | 4.8.0.4 (including) |
Chicken | Call-cc | 4.8.0.5 (including) | 4.8.0.5 (including) |
Chicken | Call-cc | 4.8.0.6 (including) | 4.8.0.6 (including) |
Chicken | Call-cc | 4.8.0.7 (including) | 4.8.0.7 (including) |