Security Advisory

CVE-2008-4394

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2008-10-10 10:00:00

Last updated 2024-08-07 10:17:09

Assigner mitre

State PUBLISHED

Description

Multiple untrusted search path vulnerabilities in Portage before 2.1.4.5 include the current working directory in the Python search path, which allows local users to execute arbitrary code via a modified Python module that is loaded by the (1) ys-apps/portage, (2) net-mail/fetchmail, (3) app-editors/leo ebuilds, and other ebuilds.

← Browse all CVEs View on cve.org ↗