GNU Emacs 'enable-local-variables' Safe Setting Can Be Bypassed Leading to Command Execution
|
|
SecurityTracker Alert ID: 1027375 |
|
SecurityTracker URL: http://securitytracker.com/id/1027375
|
|
CVE Reference:
CVE-2012-3479
(Links to External Site)
|
Date: Aug 13 2012
|
Impact:
Execution of arbitrary code via network, User access via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 23.2, 23.3, 23.4, and 24.1
|
Description:
A vulnerability was reported in GNU Emacs. A remote user can cause arbitrary commands to be executed on the target user's system.
When the Emacs user option 'enable-local-variables' is set to ':safe', the software incorrectly evaluates 'eval' forms. A remote user can create a specially crafted file that, when loaded by the target user, will execute arbitrary Emacs Lisp code with the privileges of the target user.
Paul Ling reported this vulnerability.
|
Impact:
A remote user can create a file that, when loaded by the target user, will execute arbitrary commands on the target user's system.
|
Solution:
The vendor has issued patches.
The vendor's advisory is available at:
http://debbugs.gnu.org/cgi/bugreport.cgi?bug=12155
|
Vendor URL: www.gnu.org/software/emacs/emacs.html (Links to External Site)
|
Cause:
Input validation error
|
Underlying OS:
Linux (Any)
|
|
Message History:
None.
|
Source Message Contents
|
|
|
[Original Message Not Available for Viewing]
|
|
