cbcvebase.
CVE-2008-5987
published 2009-01-28

CVE-2008-5987: Untrusted search path vulnerability in the Python interface in Eye of GNOME (eog) 2.22.3, and possibly other versions, allows local users to execute arbitrary…

PriorityP420medium6.9CVSS 2.0
AVLACMAuNCCICAC
EPSS
0.40%
31.6th percentile
Untrusted search path vulnerability in the Python interface in Eye of GNOME (eog) 2.22.3, and possibly other versions, allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983).

Affected

6 ranges
VendorProductVersion rangeFixed in
debianeog< eog 2.22.3-2 (bookworm)eog 2.22.3-2 (bookworm)
gnomeeog
gnomeeog>= 0 < 2.22.3-22.22.3-2
gnomeeog>= 0 < 2.22.3-22.22.3-2
gnomeeog>= 0 < 2.22.3-22.22.3-2
gnomeeog>= 0 < 2.22.3-22.22.3-2

CVSS provenance

nvdv2.06.9MEDIUMAV:L/AC:M/Au:N/C:C/I:C/A:C
osv6.9MEDIUM
vendor_debian6.9LOW
vendor_redhat6.9MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.