Info

Last Modified

about 1 year ago

Percent Complete

Disclosure

Apr 18, 2005

Discovery

Unknown

Dates

Exploit

Apr 18, 2005

Solution

Unknown

This Entry needs help! It is only 0% Complete. Click the edit link above to add more information.

Contributing is fast and easy, and benefits the entire security community.

Keywords

No Keywords

Description

(Description Provided by CVE) : Cheetah 0.9.15 and 0.9.16 searches the /tmp directory for modules before using the paths in the PYTHONPATH variable, which allows local users to execute arbitrary code via a malicious module in /tmp/.

Classification

Unknown or Incomplete

Products

Unknown or Incomplete

References

Security Tracker: 1013988
Secunia Advisory ID: 15386
CVE ID: 2005-1632 (see also: NVD)
Vendor URL: http://cheetahtemplate.org/
Other Advisory URL: http://sourceforge.net/mailarchive/forum.php?thread_id=7070332&forum_id=1542
Vendor Specific Advisory URL: http://www.gentoo.org/security/en/glsa/glsa-200505-14.xml

Credit

Unknown or Incomplete

Blogs

Provided by Technorati

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

DONATE NOW!

User Status

Account
- Login
- Sign-Up

Quick Searches