aru Posted April 16, 2003 Report Share Posted April 16, 2003 MandrakeSoft Security Advisory MDKSA-2003:048 : eog April 16th, 2003 Updated eog packages fix arbitrary command execution A vulnerability was discovered in the Eye of GNOME (EOG) program, version 2.2.0 and earlier, that is used for displaying graphics. A carefully crafted filename passed to eog could lead to the execution of arbitrary code as the user executing eog. The released versions of Mandrake GNU/Linux affected are: 9.0 [*] 9.1 [*] 9.1/PPC [*] Corporate Server 2.1 Full information about this advisory, including the updated packages, is available at: www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2003:048 Other references: http://cve.mitre.org/cgi-bin/cvename.cgi?n...e=CAN-2003-0165 Posted automatically by aru (mdksec2mub v0.0.5) Link to comment Share on other sites More sharing options...
Recommended Posts