Vulnerability Description
The hack-local-variables function in Emacs before 22.2, when enable-local-variables is set to :safe, does not properly search lists of unsafe or risky variables, which might allow user-assisted attackers to bypass intended restrictions and modify critical program variables via a file containing a Local variables declaration.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian | Debian Linux | All versions |
| Gnu | Emacs | <= 22.1 |
References
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=449008
- http://bugs.gentoo.org/show_bug.cgi?id=197958
- http://cvs.savannah.gnu.org/viewvc/emacs/emacs/lisp/files.el?r1=1.896.2.28&r2=1.
- http://docs.info.apple.com/article.html?artnum=307562
- http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html
- http://osvdb.org/42060
- http://secunia.com/advisories/27508
- http://secunia.com/advisories/27627
- http://secunia.com/advisories/27728
- http://secunia.com/advisories/27984
- http://secunia.com/advisories/29420
- http://security.gentoo.org/glsa/glsa-200712-03.xml
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:034
- http://www.securityfocus.com/bid/26327
- http://www.ubuntu.com/usn/usn-541-1
FAQ
What is CVE-2007-5795?
CVE-2007-5795 is a vulnerability with a CVSS score of 6.3 (MEDIUM). The hack-local-variables function in Emacs before 22.2, when enable-local-variables is set to :safe, does not properly search lists of unsafe or risky variables, which might allow user-assisted attack...
How severe is CVE-2007-5795?
CVE-2007-5795 has been rated MEDIUM with a CVSS base score of 6.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-5795?
Check the references section above for vendor advisories and patch information. Affected products include: Debian Debian Linux, Gnu Emacs.