MidnightBSD

Advisories for eric_m_ludlam

CVE-2012-0035 HIGH

Untrusted search path vulnerability in EDE in CEDET before 1.0.1, as used in GNU Emacs before 23.4 and other products, allows local users to gain privileges via a crafted Lisp expression in a Project.ede file in the directory, or a parent directory, of an opened file.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gnu emacs *
gnu emacs 23.4
gnu emacs 20.5
gnu emacs 21.1
gnu emacs 21.2
gnu emacs 20.7
gnu emacs 22.3
gnu emacs 20.6
gnu emacs 22.2
gnu emacs 20.0
gnu emacs 22.1
gnu emacs 21.4
gnu emacs 21
gnu emacs 21.2.1
gnu emacs 23.2
gnu emacs 20.2
gnu emacs 20.1
gnu emacs 21.3
gnu emacs 20.4
eric_m_ludlam cedet *
gnu emacs 20.3
gnu emacs 21.3.1
eric_m_ludlam cedet 1.0
gnu emacs 23.1