Vulnerabilities

CVE-2007-5795

by Fred · 02/11/2007

The hack-local-variables function in Emacs before 22.2, when enable-local-variables is set to :safe, does not properly search lists of unsafe or risky variables, which might allow user-assisted attackers to bypass intended restrictions and modify critical program variables via a file containing a Local variables declaration.

Date published : 2007-11-02

http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html

http://www.securityfocus.com/bid/26327

Similar

Tags: Cybersecurity Alert