CVE-2007-5795
published 2007-11-02CVE-2007-5795: The hack-local-variables function in Emacs before 22.2, when enable-local-variables is set to :safe, does not properly search lists of unsafe or risky…
PriorityP420medium6.3CVSS 2.0
AVLACMAuNCNICAC
EXPLOIT
EPSS
0.72%
49.4th percentile
The hack-local-variables function in Emacs before 22.2, when enable-local-variables is set to :safe, does not properly search lists of unsafe or risky variables, which might allow user-assisted attackers to bypass intended restrictions and modify critical program variables via a file containing a Local variables declaration.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| gnu | emacs | <= 22.1 | — |
CVSS provenance
nvdv2.06.3MEDIUMAV:L/AC:M/Au:N/C:N/I:C/A:C
vendor_redhat6.3MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Emacs vulnerability
vendor_ubuntu·2007-11-13
CVE-2007-5795 Emacs vulnerability
Title: Emacs vulnerability
Summary: Emacs vulnerability
Drake Wilson discovered that Emacs did not correctly handle the safe
mode of "enable-local-variables". If a user were tricked into opening
a specially crafted file while "enable-local-variables" was set to the
non-default ":safe", a remote attacker could execute arbitrary commands
with the user's privileges.
Instructions: In general, a standard system upgrade is sufficient to effect the
necessary changes.
Red Hat
emacs insufficient safe mode checks
vendor_redhat·2007-11-02·CVSS 6.3
CVE-2007-5795 [MEDIUM] emacs insufficient safe mode checks
emacs insufficient safe mode checks
The hack-local-variables function in Emacs before 22.2, when enable-local-variables is set to :safe, does not properly search lists of unsafe or risky variables, which might allow user-assisted attackers to bypass intended restrictions and modify critical program variables via a file containing a Local variables declaration.
Statement: Not vulnerable. This issue did not affect versions of Emacs as shipped with Red Hat Enterprise Linux 2.1, 3, 4, or 5.
GHSA
GHSA-qf2q-r4v7-rv34: The hack-local-variables function in Emacs before 22
ghsa_unreviewed·2022-05-01
CVE-2007-5795 [MEDIUM] GHSA-qf2q-r4v7-rv34: The hack-local-variables function in Emacs before 22
The hack-local-variables function in Emacs before 22.2, when enable-local-variables is set to :safe, does not properly search lists of unsafe or risky variables, which might allow user-assisted attackers to bypass intended restrictions and modify critical program variables via a file containing a Local variables declaration.
No detection rules found.
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=449008http://bugs.gentoo.org/show_bug.cgi?id=197958http://cvs.savannah.gnu.org/viewvc/emacs/emacs/lisp/files.el?r1=1.896.2.28&r2=1.896.2.29http://docs.info.apple.com/article.html?artnum=307562http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.htmlhttp://osvdb.org/42060http://secunia.com/advisories/27508http://secunia.com/advisories/27627http://secunia.com/advisories/27728http://secunia.com/advisories/27984http://secunia.com/advisories/29420http://security.gentoo.org/glsa/glsa-200712-03.xmlhttp://www.mandriva.com/security/advisories?name=MDVSA-2008:034http://www.securityfocus.com/bid/26327http://www.ubuntu.com/usn/usn-541-1http://www.vupen.com/english/advisories/2007/3715http://www.vupen.com/english/advisories/2008/0924/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/38263https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00524.htmlhttp://bugs.debian.org/cgi-bin/bugreport.cgi?bug=449008http://bugs.gentoo.org/show_bug.cgi?id=197958http://cvs.savannah.gnu.org/viewvc/emacs/emacs/lisp/files.el?r1=1.896.2.28&r2=1.896.2.29http://docs.info.apple.com/article.html?artnum=307562http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.htmlhttp://osvdb.org/42060http://secunia.com/advisories/27508http://secunia.com/advisories/27627http://secunia.com/advisories/27728http://secunia.com/advisories/27984http://secunia.com/advisories/29420http://security.gentoo.org/glsa/glsa-200712-03.xmlhttp://www.mandriva.com/security/advisories?name=MDVSA-2008:034http://www.securityfocus.com/bid/26327http://www.ubuntu.com/usn/usn-541-1http://www.vupen.com/english/advisories/2007/3715http://www.vupen.com/english/advisories/2008/0924/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/38263https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00524.html
2007-11-02
Published