tcl/tk package (tcltk) 8.3.1 searches for its libraries in the current working directory before other directories, which could allow local users to execute arbitrary code via a Trojan horse library that is under a user-controlled directory.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
conectiva linux 6.0 |
||
conectiva linux 7.0 |
||
redhat linux 7.0 |