Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4863

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2008-4863
Last Modified 15 Apr 2010 01:27:09
Published 31 Oct 2008 08:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2008-4863

Summary

Untrusted search path vulnerability in BPY_interface in Blender 2.46 allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to an erroneous setting of sys.path by the PySys_SetArgv function.

Vulnerable Systems

Application

  • Blender 2.46


References

MLIST - [oss-security] 20081027 CVE id request: blender

MANDRIVA - MDVSA-2009:038

GENTOO - GLSA-201001-07

CONFIRM - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=503632


Last Updated: 27 May 2016 10:48:39