Gnumeric 'PySys_SetArgv' Remote Command Execution Vulnerability

Gnumeric is prone to a remote command-execution vulnerability.

An attacker could exploit this issue by enticing an unsuspecting victim to execute the vulnerable application in a directory containing a malicious Python file. A successful exploit will allow arbitrary Python commands to run with the privileges of the currently logged-in user.


Privacy Statement
Copyright 2010, SecurityFocus