Vulnerability Description
Untrusted search path vulnerability in GTK2 in OpenSUSE 11.0 and 11.1 allows local users to execute arbitrary code via a Trojan horse GTK module in an unspecified "relative search path."
CVSS Score
4.4
MEDIUM
AV:L/AC:M/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Opensuse | Opensuse | 11.0 |
Related Weaknesses (CWE)
References
- http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00001.htmlVendor Advisory
- http://secunia.com/advisories/34259
- https://exchange.xforce.ibmcloud.com/vulnerabilities/49228
- http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00001.htmlVendor Advisory
- http://secunia.com/advisories/34259
- https://exchange.xforce.ibmcloud.com/vulnerabilities/49228
FAQ
What is CVE-2009-0848?
CVE-2009-0848 is a vulnerability with a CVSS score of 4.4 (MEDIUM). Untrusted search path vulnerability in GTK2 in OpenSUSE 11.0 and 11.1 allows local users to execute arbitrary code via a Trojan horse GTK module in an unspecified "relative search path."
How severe is CVE-2009-0848?
CVE-2009-0848 has been rated MEDIUM with a CVSS base score of 4.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-0848?
Check the references section above for vendor advisories and patch information. Affected products include: Opensuse Opensuse.